SPECIFICATION 



TO ALL WHOM IT MAY CONCERN: 

Be it known that we, Mark Lucovsky and Steven D. White have invented a certain new 
and useful SCHEMA-BASED SERVICES FOR IDENTITY-BASED ACCESS TO 
PROFILE DATA of which the following is a specification. 
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CROSS REFERENCE TO RELATED APPLICATIONS 

5 The present application claims priority from co-pending United States provisional 

application serial number 60/275,809, filed March 14, 2001 and entitled "Identity-Based 
Service Communication Using XML Messaging Interfaces", which is hereby incorporated 
herein by reference in its entirety. The present application is related to United States Patent 

Application serial number entitled Schema-Based Services for Identity-Based Data 

Jif 10 Access, filed concurrently herewith on October 22, 2001 . 
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A portion of the disclosure of this patent document contains material that is subject to 
copyright protection. The copyright owner has no objection to the facsimile reproduction by 
15 anyone of the patent document or the patent disclosure as it appears in the Patent and 

Trademark Office patent file or records, but otherwise reserves all copyright rights whatsoever. 

FIELD OF THE INVENTION 

The invention relates generally to computer network data access, and more particularly 
20 to systems, methods and data structures for accessing data and data-related services over a 
network. 
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BACKGROUND OF THE INVENTION 
There are many types of data that users need to manage and otherwise access. For 
example, users keep word processing documents, spreadsheet documents, calendars, telephone 
numbers and addresses, e-mail messages, financial information and so on. In general, users 
5 maintain this information on various personal computers, hand-held computers, pocket-sized 
computers, personal digital assistants, mobile phones and other electronic devices. In most 
cases, a user's data on one device is not accessible to another device, without some manual 
synchronization process or the like to exchange the data, which is cumbersome. Moreover, 
some devices do not readily allow for synchronization. For example, if a user leaves his cell 
10 phone at work, he has no way to get his stored phone numbers off the cell phone when at 
home, even if the user has a computing device or similar cell phone at his disposal. As is 
evident, these drawbacks result from the separate devices each containing their own data. 

Corporate networks and the like can provide users with remote access to some of their 
JJJ data, but many users do not have access to such a network. For many of those that have 

15 access, connecting to a network with the many different types of devices, assuming such 
devices can even connect to a network, can be a complex or overwhelming problem. 

Moreover, even if a user has centrally stored data, the user needs the correct type of 
device running the appropriate application program to access that data. For example, a user 
with a PDA that maintains a user's profile (e.g., name, addresses, telephone numbers and so 
20 on) with a simple address book-type taking application program ordinarily will not be able to 
use that program to open profile information stored by another application program or the like 
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at work. In general, this is because the data is formatted and accessed according to the way 
the application program wants it to be formatted. 

What is needed is a model wherein data is centrally stored for users, with a set of 
services that control access to the data with defined methods, regardless of the application 
program and/or device. 

SUMMARY OF THE INVENTION 

Briefly, the present invention provides a Profile service for central (e.g., Internet) 
access to per-user contact data, based on each user's identity, wherein the Profile service 



lii 10 includes a schema that defines rules and a structure for the data, and also includes methods that 



fy provide access to the data in a defined way. Because the structure of the data is defined from 

= S 

H» the perspective of the data, not from that of an application program or a device, programs can 

communicate with the services to access the data, with existing knowledge of the format. In 
one implementation, the Profile schemas are arranged as XML documents, and the services 
15 provide methods that control access to the data based on the requesting user's identification, 
defined role and scope for that role. In this way, data can be accessed by its owner, and shared 
to an extent determined by the owner. Extensibility is defined into the schema. 

Other benefits and advantages will become apparent from the following detailed 
description when taken in conjunction with the drawings, in which: 
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BRIEF DESCRIPTION OF THE DRAWINGS 

FIGURE 1 is a block diagram representing an exemplary computer system into which 
the present invention may be incorporated; 

FIG. 2 is a block diagram representing a generic data access model in accordance with 
one aspect of the present invention; 

FIG. 3 is a representation of services for identity-based data access in accordance with 
one aspect of the present invention; and 

FIG. 4 is a block diagram representing a schema-based service for accessing data 
arranged in a logical content document based on a defined schema for that service in 
accordance with one aspect of the present invention. 

DETAILED DESCRIPTION 

EXEMPLARY OPERA TING ENVIRONMENT 

FIGURE 1 illustrates an example of a suitable computing system environment 100 on 
which the invention may be implemented. The computing system environment 100 is only one 
example of a suitable computing environment and is not intended to suggest any limitation as 
to the scope of use or functionality of the invention. Neither should the computing 
environment 100 be interpreted as having any dependency or requirement relating to any one 
or combination of components illustrated in the exemplary operating environment 100. 

The invention is operational with numerous other general purpose or special purpose 
computing system environments or configurations. Examples of well known computing 
systems, environments, and/or configurations that may be suitable for use with the invention 



include, but are not limited to: personal computers, server computers, hand-held or laptop 
devices, tablet devices, multiprocessor systems, microprocessor-based systems, set top boxes, 
programmable consumer electronics, network PCs, minicomputers, mainframe computers, 
distributed computing environments that include any of the above systems or devices, and the 
like. 

The invention may be described in the general context of computer-executable 
instructions, such as program modules, being executed by a computer. Generally, program 
modules include routines, programs, objects, components, data structures, and so forth, that 
perform particular tasks or implement particular abstract data types. The invention may also 
be practiced in distributed computing environments where tasks are performed by remote 
processing devices that are linked through a communications network. In a distributed 
computing environment, program modules may be located in local and/or remote computer 
storage media including memory storage devices. 

With reference to FIG. 1, an exemplary system for implementing the invention includes 
a general purpose computing device in the form of a computer 1 10. Components of the 
computer 1 10 may include, but are not limited to, a processing unit 120, a system memory 
130, and a system bus 121 that couples various system components including the system 
memory to the processing unit 120. The system bus 121 may be any of several types of bus 
structures including a memory bus or memory controller, a peripheral bus, and a local bus 
using any of a variety of bus architectures. By way of example, and not limitation, such 
architectures include Industry Standard Architecture (ISA) bus, Micro Channel Architecture 



(MCA) bus, Enhanced ISA (EISA) bus, Video Electronics Standards Association (VESA) 
local bus, and Peripheral Component Interconnect (PCI) bus also known as Mezzanine bus. 

The computer 1 10 typically includes a variety of computer-readable media. Computer- 
readable media can be any available media that can be accessed by the computer 1 1 0 and 
5 includes both volatile and nonvolatile media, and removable and non-removable media. By 
way of example, and not limitation, computer-readable media may comprise computer storage 
media and communication media. Computer storage media includes both volatile and 
nonvolatile, removable and non-removable media implemented in any method or technology 
for storage of information such as computer-readable instructions, data structures, program 

t3 

!rj 10 modules or other data. Computer storage media includes, but is not limited to, RAM, ROM, 
fn EEPROM, flash memory or other memory technology, CD-ROM, digital versatile disks 

H> (DVD) or other optical disk storage, magnetic cassettes, magnetic tape, magnetic disk storage 

N* or other magnetic storage devices, or any other medium which can be used to store the desired 

information and which can accessed by the computer 110. Communication media typically 
J 15 embodies computer-readable instructions, data structures, program modules or other data in a 
modulated data signal such as a carrier wave or other transport mechanism and includes any 
information delivery media. The term "modulated data signal" means a signal that has one or 
more of its characteristics set or changed in such a manner as to encode information in the 
signal. By way of example, and not limitation, communication media includes wired media 
20 such as a wired network or direct-wired connection, and wireless media such as acoustic, RF, 
infrared and other wireless media. Combinations of the any of the above should also be 
included within the scope of computer-readable media. 
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The system memory 130 includes computer storage media in the form of volatile and/or 
nonvolatile memory such as read only memory (ROM) 131 and random access memory 
(RAM) 132. A basic input/output system 133 (BIOS), containing the basic routines that help 
to transfer information between elements within computer 110, such as during start-up, is 
typically stored in ROM 131. RAM 132 typically contains data and/or program modules that 
are immediately accessible to and/or presently being operated on by processing unit 120. By 
way of example, and not limitation, FIG. 1 illustrates operating system 134, application 
programs 135, other program modules 136 and program data 137. 

The computer 1 10 may also include other removable/non-removable, 
volatile/nonvolatile computer storage media. By way of example only, FIG. 1 illustrates a hard 
disk drive 141 that reads from or writes to non-removable, nonvolatile magnetic media, a 
magnetic disk drive 151 that reads from or writes to a removable, nonvolatile magnetic disk 
152, and an optical disk drive 155 that reads from or writes to a removable, nonvolatile optical 
disk 156 such as a CD ROM or other optical media. Other removable/non-removable, 
volatile/nonvolatile computer storage media that can be used in the exemplary operating 
environment include, but are not limited to, magnetic tape cassettes, flash memory cards, 
digital versatile disks, digital video tape, solid state RAM, solid state ROM, and the like. The 
hard disk drive 141 is typically connected to the system bus 121 through a non-removable 
memory interface such as interface 140, and magnetic disk drive 151 and optical disk drive 155 
are typically connected to the system bus 121 by a removable memory interface, such as 
interface 150. 



The drives and their associated computer storage media, discussed above and 
illustrated in FIG. 1, provide storage of computer-readable instructions, data structures, 
program modules and other data for the computer 110. In FIG. 1, for example, hard disk drive 
141 is illustrated as storing operating system 144, application programs 145, other program 
modules 146 and program data 147. Note that these components can either be the same as or 
different from operating system 134, application programs 135, other program modules 136, 
and program data 137. Operating system 144, application programs 145, other program 
modules 146, and program data 147 are given different numbers herein to illustrate that, at a 
minimum, they are different copies. A user may enter commands and information into the 
computer 20 through input devices such as a tablet, or electronic digitizer, 164, a microphone 
163, a keyboard 162 and pointing device 161, commonly referred to as mouse, trackball or 
touch pad. Other input devices not shown in FIG. 1 may include a joystick, game pad, satellite 
dish, scanner, or the like. These and other input devices are often connected to the processing 
unit 120 through a user input interface 160 that is coupled to the system bus, but may be 
connected by other interface and bus structures, such as a parallel port, game port or a 
universal serial bus (USB). A monitor 191 or other type of display device is also connected to 
the system bus 121 via an interface, such as a video interface 190. The monitor 191 may also 
be integrated with a touch-screen panel or the like. Note that the monitor and/or touch screen 
panel can be physically coupled to a housing in which the computing device 1 10 is 
incorporated, such as in a tablet-type personal computer. In addition, computers such as the 
computing device 1 10 may also include other peripheral output devices such as speakers 195 



and printer 196, which may be connected through an output peripheral interface 194 or the 
like. 

The computer 1 10 may operate in a networked environment using logical connections 
to one or more remote computers, such as a remote computer 180. The remote computer 180 
5 may be a personal computer, a server, a router, a network PC, a peer device or other common 
network node, and typically includes many or all of the elements described above relative to 
the computer 110, although only a memory storage device 181 has been illustrated in FIG. 1. 
The logical connections depicted in FIG. 1 include a local area network (LAN) 171 and a wide 
area network (WAN) 173, but may also include other networks. Such networking 

10 environments are commonplace in offices, enterprise- wide computer networks, intranets and 
the Internet. For example, in the present invention, the computer system 1 10 may comprise 
source machine from which data is being migrated, and the remote computer 180 may 
comprise the destination machine. Note however that source and destination machines need 
not be connected by a network or any other means, but instead, data may be migrated via any 

15 media capable of being written by the source platform and read by the destination platform or 
platforms. 

When used in a LAN networking environment, the computer 1 10 is connected to the 
LAN 171 through a network interface or adapter 170. When used in a WAN networking 
environment, the computer 1 10 typically includes a modem 172 or other means for establishing 
20 communications over the WAN 173, such as the Internet. The modem 172, which may be 

internal or external, may be connected to the system bus 121 via the user input interface 160 or 
other appropriate mechanism. In a networked environment, program modules depicted 
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relative to the computer 1 10, or portions thereof, may be stored in the remote memory storage 
device. By way of example, and not limitation, FIG. 1 illustrates remote application programs 
185 as residing on memory device 181. It will be appreciated that the network connections 
shown are exemplary and other means of establishing a communications link between the 
computers may be used. 

DA TA ACCESS MODEL 

The present invention generally operates in an architecture / platform that connects 
network-based (e.g., Internet-based) applications, devices and services, and transforms them 
into a user's personal network which works on the user's behalf, and with permissions granted 
by the user. To this end, the present invention is generally directed to schema-based services 
that maintain user, group, corporate or other entity data in a commonly accessible virtual 
location, such as the Internet. The present invention is intended to scale to millions of users, 
and be stored reliably, and thus it is likely that a user's data will be distributed among and/or 
replicated to numerous storage devices, such as controlled via a server federation. As such, 
while the present invention will be generally described with respect to an identity-centric model 
that enables a user with an appropriate identity and credentials to access data by 
communicating with various core or other services, it is understood that the schema-based 
services described herein are arranged for handling the data of millions of users, sorted on a 
per-user-identity basis. Note that while "user" is generally employed herein for simplicity, as 
used herein the term "user" is really a substitute for any identity, which may be a user, a group, 
another entity, an event, a project, and so on. 
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As generally represented in FIG. 2, a data access model 200 includes a generic 
navigation module 202 through which applications 204 and the like may access a wide variety 
of identity-based data, such as maintained in an addressable store 206. To access the data, a 
common set of command methods may be used to perform operations on various data 
structures that are constructed from the data in the addressable store 206, even though each of 
those data structures may represent different data and be organized quite differently. Such 
command methods may describe generic operations that may be desired on a wide variety of 
data structures, and include, for example, insert, delete, replace, update, query or changequery 
methods. 

In accordance with one aspect of the present invention and as described in detail below, 
the data is accessed according to various schemas, with the schemas corresponding to identity- 
based services through which users access their data. As used herein, a "schema" generally 
comprises a set of rules that define how a data structure may be organized, e.g., what elements 
are supported, in what order they appear, how many times they appear, and so on. In addition, 
a schema may define, via color-coding or other identification mechanisms, what portions of an 
XML document (that corresponds to the data structure) may be operated on. Examples of 
such XML-based documents are described below. The schema may also define how the 
structure of the XML document may be extended to include elements not expressly mentioned 
in the schema. 

As will be understood below, the schemas vary depending on the type of data they are 
intended to organize, e.g., an email-inbox-related schema organizes data differently from a 
schema that organizes a user's favorite websites. Further, the services that employ schemas 



may vary. As such, the generic navigation module 202 has associated therewith a navigation 
assistance module 208 that includes or is otherwise associated with one or more schemas 210. 
As will be understood, a navigation assistance module 208 as represented in FIG. 2 
corresponds to one or more services, and possesses the information that defines how to 
navigate through the various data structures, and may a*so indicate which command methods 
may be executed on what portions of the data structure. Although in FIG. 2 only one 
navigation assistance module 208 is shown coupled to the generic navigation module 202, 
there may be multiple navigation assistance modules that may each specialize as desired. For 
example, each navigation assistance module may correspond to one service. Moreover, 
although the navigation assistance module 208 is illustrated as a separate module, some or all 
of the operations of the navigation assistance module 208 may be incorporated into the generic 
navigation module 202, and vice versa. In one embodiment, the various data structures 
constructed from the schema and addressable store data may comprise XML documents of 
various XML classes. In that case, the navigation assistance module 208 may contain a 
schema associated with each of the classes of XML documents. 

The present invention provides a number of schema-based services that facilitate data 
access based on the identity of a user. Preferably, the user need not obtain a separate identity 
for each service, but rather obtains a single identity via a single set of credentials, such as with 
the Microsoft® Passport online service. With such an identity, a user can access data via these 
services from virtually any network connectable device capable of running an application that 
can call the methods of a service. 
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SERVICES AND SCHEMA S 

".NET My Services" comprises identity-centric services which may be generally 
implemented in XML (extensible Markup Language) Message Interfaces (XMIs). While the 
present invention will be described with respect to XML and XMI, it can readily be 
appreciated that the present invention is not limited to any particular language or set of 
interfaces. The .NET My Services model essentially corresponds to one implementation of the 
generic data access model 200 of FIG. 2. 

As generally represented in FIG. 3 5 .NET My Services 300 is implemented as a set of 
Web services 301-316, each bound to a .NET Identity (PUID, such as a Passport® unique 
identifier similar to a globally unique indentifier when Passport^ is the authentication service). 
The services 301-316 can communicate with one another via a service-to-service 
communications protocol (SSCP), described below. As also described below, each service 
presents itself as a set of XML documents that can be manipulated from an application 
program 202 (FIG. 2) or the like using a set of standard methods and domain-specific 
methods. To this end, a user device 320 (endpoint) running such application programs 
connects a user's applications to the services, and the data controlled by those services, such as 
over the Internet or an Intranet, such as over the Internet or an Intranet. Note that endpoints 
can be client devices, applications or services. In keeping with the present invention, virtually 
any device capable of executing software and connecting to a network in any means may thus 
give a user access to data that the user is allowed to access, such as the user's own data, or 
data that a friend or colleague has specified as being accessible to that particular user. 



In general, a .NET Identity is an identifier assigned to an individual, a group of 
individuals, or some form of organization or project. Using this identifier, services bound to 
that identity can be located and manipulated. A general effect is that each identity (e.g., of a 
user, group or organization) has tied to it a set of services that are partitioned along schema 
boundaries and across different identities. As will be understood, the XML-document-centric 
architecture of.NET My Services provides a model for manipulating and communicating 
service state that is very different from prior data access models. The XML-document-centric 
approach, in conjunction with loose binding to the data exposed by the services, enables new 
classes of application programs. As will also be understood, the .NET My Services model 300 
presents the various services 301-316 using a uniform and consistent service and method 
model, a uniform and consistent data access and manipulation model, and a uniform and 
consistent security authorization model. 

In a preferred implementation, the .NET My Services model 300 is based upon open 
Internet standards. Services are accessed by means of SOAP (Simple Object Access Protocol) 
messages containing an XML payload. Service input and output is expressed as XML 
document outlines, and each of these document outlines conform to an XML schema 
document. The content is available to a user interacting with the .NET My Services service 
endpoint 320. 

Turning to FIG. 4, in the NET My Services model, an application 400 requests 
performance of a method that operates on data structures. The application may make a 
request that is generic with respect to the type of data structure being operated upon and 
without requiring dedicated executable code for manipulating data structures of any particular 
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data type. To this end, the application first contacts a special myServices service 314 to obtain 
the information needed to communicate with a particular service 404, through a set of methods 
406 of that service 404. For example, the needed information received from the myServices 
service 3 14 includes a URI of that service 404. Note that the service 404 may correspond to 
essentially any of the services represented in FIG. 3, such as the myProfile service 313. 

The service 404 includes or is otherwise associated with a set of methods 406 including 
standard methods 408, such as to handle requests directed to insert, delete, replace, update, 
query or changequery operations on the data. The set of methods of a particular service may 
also include service specific methods 410. In general, the only way in which an application can 
communicate with a service are via that service's methods. 

Each service includes service logic 412 for handling requests and providing suitable 
responses. To this end, the service logic performs various functions such as authorization, 
authentication, and signature validation, and further limits valid users to only the data which 
they are permitted to access. The security aspect of a service is not discussed herein, except to 
note that in general, for otherwise valid users, the user's identity determines whether a user can 
access data in a requested manner. To this end, a roleMap 414 comprising service- wide 
roleList document templates 415 and scopes (e.g., part of the overall service's schema 416), in 
conjunction with user-based data maintained in an addressable store 418, determines whether a 
particular requested method is allowed, e.g., by forming an identity-based roleList document 
420. If a method is allowed, the scope information in the roleMap 414 determines a shape of 
data to return, e.g., how much content is allowed to be accessed for this particular user for this 
particular request. The content is obtained in accordance with a content document 422 in the 
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service's schema 416 and the actual user data corresponding to that content document in the 
addressable store 418. In this manner, a per-identity shaped content document 424 is 
essentially constructed for returning to the user, or for updating the addressable store, as 
appropriate for the method. Note that FIG, 4 includes a number of ID-based roleList 
documents and ID-based content documents, to emphasize that the service 406 is arranged to 
serve multiple users. Also, in FIG. 4, a system document 426 is present as part of the schema 
416, as described below. 

Returning to FIG. 3, in one implementation, access to .NET My Services 300 is 
accomplished using SOAP messages formatted with .NET My Services- specific header and 
body content. Each of the .NET My Services will accept these messages by means of an 
HTTP POST operation, and generate a response by "piggy-backing" on the HTTP Response, 
or by issuing an HTTP POST to a .NET My Services response-processing endpoint 320. In 
addition to HTTP as the message transfer protocol, .NET My Services will support raw SOAP 
over TCP, a transfer protocol known as Direct Internet Message Encapsulation (or DIME). 
Other protocols for transferring messages are feasible. 

Because .NET My Services are accessed by protocol, no particular client-side binding 
code, object models, API layers, or equivalents are required, and are thus optional. The .NET 
My Services will support Web Services Description Language (WSDL). It is not mandatory 
that applications wishing to interact with .NET My Services make use of any particular 
bindings, and such bindings are not described herein. Instead, the present invention will be 
generally described in terms of messages that flow between requestors of a particular service 
and the service endpoints. In order to interact with .NET My Services, a service needs to 
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format a .NET My Services message and deliver that message to a .NET My Services 
endpoint. In order to format a message, a client needs to manipulate XML document outlines, 
and typically perform some simple, known (public-domain) cryptographic operations on 
portions of the message. 

In accordance with one aspect of the present invention, and as described in FIG. 4 and 
below, in one preferred implementation, services (including the myProfile service 313) present 
three logical XML documents, a content document 422, roleList document 415 (of the 
roleMap 414), and a system document 426. These documents are addressable using .NET My 
Services message headers, and are manipulated using standard .NET My Services methods. In 
addition to these common methods, each service may include additional domain-specific 
methods. 

Each .NET MyServices service thus logically includes a content document 422, which 
in general is the main, service-specific document. The schema for this document 422 is a 
function of the class of service, as will become apparent from the description of the myProfile 
service's content document below. For example, in the case of the myProfile service 313, the 
content document presents data in the shape dictated by the .NET My Services .myProfile 
schema, whereas in the case of the ".NET FavoriteWebSites" service 308, the content 
document presents data in the shape dictated by a .NET myFavoriteWebSites schema. 

Each service also includes a roleList document 415 that contains roleList information, 
comprising information that governs access to the data and methods exported by the service 
404. The roleList document is manipulated using the .NET My Services standard data 
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manipulation mechanisms. The shape of this document is governed by the .NET My Services 
core schema's roleListType XML data type. 

Each service also includes a system document 426, which contains service-specific 
system data such as the roleMap, schemaMap, messageMap, version information, and service 
specific global data. The document is manipulated using the standard .NET data manipulation 
mechanism, although modifications are limited in a way that allows only the service itself to 
modify the document. The shape of this system document 426 may be governed by the system 
document schema for the particular service, in that each service may extend a base system 
document type with service specific information. 

As is understood, the present invention is generally based on schemas, which in general 
comprise a set of rules or standards that define how a particular type of data can be structured. 
Via the schemas, the meaning of data, rather than just the data itself, may be communicated 
between computer systems. For example, a computer device may recognize that a data 
structure that follows a particular address schema represents an address, enabling the computer 
to "understand" the component part of an address. The computer device may then perform 
intelligent actions based on the understanding that the data structure represents an address. 
Such actions may include, for example, the presentation of an action menu to the user that 
represents things to do with addresses. Schemas may be stored locally on a device and/or 
globally in a federation's "mega-store." A device can keep a locally-stored schema updated by 
subscribing to an event notification service (in this case, a schema update service) that 
automatically passes messages to the device when the schema is updated. Access to globally 
stored schemas is controlled by the security infrastructure. 
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GENERAL SCHEMA COMMONALITY 

The .NET My Services data is defined using annotated XSD schema files. The XSD 
files accurately type the data, but since XSD is a verbose and complex language, it is not a 
particularly efficient way to convey structure and meaning. Thus, for purposes of simplicity 
herein, the myProfile schemas are described below in terms of schema outlines with 
accompanying element/attribute descriptions. These document outlines accurately show the 
structure of the data contained within a service. However, because the present application is 
not viewable in color, the nodes, elements and/or attributes of the schema outlines (which may 
be described as bold blue, or blue), are represented in the schema outlines as boldface type. 
Those described as underlined red, or red, are represented as underlined type, while others 
referred to as black are represented in normal type. 

The meaning of these bold (blue), underlined (red) and normal (black) items has 
significance with respect to the data model and to the data language that accesses and 
manipulates the data (e.g., via the insert, delete, replace, update, query, changequery or other 
methods). For example, each document described below contains a root element having an 
element name that matches that of the service, e.g., the myProfile service has a root element 
named myProfile. The .NET My Services name for this item is the root. 

Documents contain elements that resemble first-class top-level objects, including, for 
example, <catDef/> , < myApplicationsSettings /> (other another name as appropriate) and 
<order/>. Such items are denoted in the outlines as bold (blue), and may be identified using an 
<xdb:blue/> tag. Bold (blue) items define major blocks of data within a service. These node 
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sets are directly addressable by an identifier attribute, and their change status is tracked 
through a changeNumber attribute. Top-level bold blue items may be considered objects. As 
seen below, some bold (blue) objects contain nested bold blue objects. They usually contain 
frequently changing underlined (red) properties, which reduces the amount of synchronization 
traffic. Nested bold (blue) items may be considered property groups. 

Each bold blue item contains one or more underlined (red) items which are elements or 
attributes. These items may be identified using the < xdb:red/ > tag. These items are special in 
that they may be used within predicates (filters) to aid in xdb:bold blue selection. These items 
are also directly addressable and may be manipulated directly by the data manipulation 
language. 

Each colored red element may contain one or more non-colorized elements and 
attributes, which are valid and semantically meaningful XML items in the service document. 
Such items are opaque to the data language. These uncolored (i.e., non-bold or underlined) 
elements and attributes may not be addressed directly, may not be selected in a node selection 
operation, and may not be used in a predicate node test. Note that if one of these items is in 
the path to an underlined red item, it may be used in a location step to the underlined red item, 
but may not be used as the selected node. Note that being opaque does not mean that the item 
is not considered during schema validation, but rather means that the item may not be used in a 
predicate, may not be directly addressed, and may not be inserted by itself. As can be readily 
appreciated, in this manner, the .NET My Services thus limits the granularity of access to 
nodes within the service document, since only xdb:bold blue and xdb underlined red marked 
items are directly addressable, and only those elements and attributes tagged with the 



xdb underlined red annotation may be used in predicates to influence node selection. Using 
this technique, the .NET My Services storage system can efficiently manage indexes, increase 
the performance of node selection, partially shred the document data, and in general (because 
the node selections are well defined) fine-tune the node selection logic on a per-xdb:blue basis. 

5 The primary purpose of the xdb:blue is to define a base-level XML object that is designed to 
be operated on as a unit. The primary purpose of the xdb:red items is to aid in the selection of 
xdb:bold blues. The xdb:red items may be changed by the data language primitives so some 
level of fine-grained manipulation of the data is available, but only in very limited ways. 

Bold blue items have unique IDs, which are usually assigned by .NET My Services, and 

10 are returned from update operations within the new blueld node. In all cases, the order of 

xxcBold blue follows the pre-order traversal of the document XML tree. Item IDs are UUIDs 
in the following format (h stands for a hexadecimal digit): hhhhhhhh-hhhh-hhhh-hhhh- 
hhhhhhhhhhhh. 

In addition to identifiers, names and change numbers, nodes and especially red nodes 
15 may include creator identifiers, category information, and {any} fields. Category information 
enables data to be grouped and/or distinguished in some way, such as to share certain calendar 
information with golf buddies, send an email to immediately family, designate things such as 
which telephone number is the user's primary number, e.g., if a user has a second home, and so 
on. Fields of type "any" may comprise fully-typed, namespace-qualified fields that contain any 
20 type of content (e.g., free-form XML) therein. Such "any" fields thus allow extensibility of the 
schema, yet maintain the defined structure of a schema. 
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In one implementation, the core data-manipulation language implemented by the .NET 
My Services includes an insertRequest, or insert message. This primitive inserts any schema- 
valid XML fragment into a selected context, thereby changing the existing state of the 
document. A queryRequest, or message, retrieves data, such as to retrieve a document. 
Multiple queries may be specified in one request, and queries that select nothing are considered 
successful. It is possible to assert that the number of nodes in the selection falls in a given 
range. This is expressed using minOccurs and maxOccurs attributes. If a 
minOccurs/maxOccurs test fails on any node, the request is considered unsuccessful. Note that 
this is different from a failure code, which would be returned, for example, for a malformed 
request. 

A deleteRequest primitive deletes the selected nodes and all their children. Note that, 
just like for other requests, attributes may be selected as well as elements. Empty selections 
result in successful operations, similar to Query. The minOccurs/maxOccurs tests are 
supported wherever select is allowed. 

A replaceRequest primitive (replace message) is designed to replace the content of each 
of the selected nodes with the specified new content. Selected nodes themselves are not 
affected in any way. This may be considered as an atomic delete of the content of the selected 
node, followed by an insert. The content (text, attributes, elements) in the selected nodes are 
replaced with the new item specified in this message. The node type of the selected node and 
of the replacement node are thus required to be the same. The changequery request essentially 
returns result comrpising data that has changed. 



As mentioned above, each of the services includes a RoleList document and scope 
information that describes which users have what type of access to which data. For example, a 
data owner will have read/write access to his or her own data, and can provide various types of 
rights to that data to other users based on their IDs, (e.g., read only to some users, read write 
to others). Each role list identifier may be associated with a scope, by which the kinds of data 
stored according to a given schema can be controlled per user. For example, a user can give a 
friend (with one identity) access via a service to a home telephone number, home address and 
so forth, but can give other users (with other identities) access only to a business telephone 
number. In general, a scope can be defined such that that it includes everything except any 
specifically listed items, or excludes everything except any specifically listed items. 

myProfile 

The myProfile service is designed to store and manage personal profile information like 
name, identification numbers, and picture pointers for the end user. The service is a place 
holder for personal information that is not covered by other personal .NET My Services like 
.NET Address. Between this service, and the .NET Address service, many of the pieces of 
data typically found in an address book entry, or personal profile can be found. 

Each .NET My Services user has one (logical) Profile service document, and each user 
maintains complete control over read and write access to the information contained within that 
profile service document. The user can control visibility of nodes and grant various levels 
access to applications and other users based on the role templates. Users can consent to either 
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a one-time or continued access, allowing applications to use data from the Profile to pre-fill a 
form as part of a transaction. 

Users can also direct the Profile service to publish information to one or more .NET 
Contacts service (myContacts) users via a mechanism called LiveContacts. Subscribers view 
5 this data in the form of a Contact record. The Profile owner chooses what information is 
published to each subscriber role. Once a publisher/subscriber relationship is established, the 
subscriber's myContact entry for the user's Profile becomes an automatically updated, read only 
Contact record (a "LiveContact"), i.e., any changes made to that Profile will automatically be 
|* reflected in all subscribers' Contact record. The decision about what information gets 

O 10 published to whom is controlled by the owner of the profile through the use of roles. In one 

ru 

;!! implementation, the aforementioned service-to-service communications protocol (SSCP) 

provides a highly efficient, robust mechanism for such automatic updates. Throughout the 
following examples, an "hs" as in <hs: scope . . > represents the namespace or schematic that 
may be used to interpret the corresponding element. 

15 

my Profile / Roles 

The myProfile service controls access by using the rtO, rtl, rt2, rt3 and rt99 
roleTemplates, using the following scopes: 

scope allEIements 

20 <hs:scopeid=7215df55-e4af-449f-a8e4-72alf7c6a987> 
<hs: shape base=t> 
</hs:shape> 
</hs:scope> 

25 scope onlySelfElements 

<hs: scope id=al 59c93 d-40 1 0-4460-bc34-5 094c49c 1 633> 
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<hs: shape base=nil> 

<hs:include select=//*[@creator= t $callerId']/> 
</hs:shape> 
</hs:scope> 

scope onlySelfSubscriptionElements 

<hs:scope id=b7fD5a6d-75cd-4958-9dfb-f532ebbl7743> 

<hs: shape base=nil> 

<hs:include select=//subscription[@creator='$callerId , ]/ > 

</hs:shape> 
</hs:scope> 

scope onlyPublicEIements 

<hs:scope id=da025540-a0c0-470f-adcf-9f07e5a5ec8f> 
<hs: shape base=nil> 

<hs:include select=//*[cat/@ref= t hs:public']/> 
<hs:include select=//subscription[@creator= t $callerId']/> 
</hs:shape> 
</hs:scope> 

The myProfile roleTemplate rtO role gives complete read/write access to the 
information within the content document of the service being protected through this 
roleTemplate. The following table illustrates the available methods and the scope in effect 
when accessing the myProfile service through that method while mapped to this roleTemplate: 



TABLE - myProfile roleTemplate rtO 



IMethod 


scope/name 


ilquerv 


:allElements 


pnsert 


allElements 


^Replace 


.allElements 


(Delete 


allElements 


:|Update 


allElements 



The myProfile roleTemplate rtl role gives complete read access to all information 
within the content document of the service being protected through this roleTemplate. 
Applications mapping to this role also have a limited ability to write to information in the 



content document. They may create nodes in any location, but may only change/replace, or 
delete nodes that they created. The following table illustrates the available methods and the 
scope in effect when accessing the myProfile service through that method while mapped to this 
roleTemplate: 

TABLE - myProfile roleTemplate rtl 
ijMethod :scope/name 

IjQuery iallElements 
iilnsert ionlySelfElements 
^Replace onlySelfElements \ 

ijDelete .onlySelfElements 

The myProfile roleTemplate rt2 role gives complete read access to the information 

within the content document of the service being protected through this roleTemplate. 

Applications mapping to this role have very limited write access and are only able to create and 

manipulate their own subscription nodes. The following table illustrates the available methods 

and the scope in effect when accessing the myProfile service through that method while 

mapped to this roleTemplate: 



TABLE - myProfile roleTemplate rt2 



imethod 


jscope/name 


jQuery 


iallElements 


jlnsert 


lonlySelfSubscriptionElements 


^replace 


lonlySelfSubscriptionElements 


belete 


bnlySelfSubscriptionElements 



The myProfile roleTemplate rt3 role gives limited read access to information within the 
content document that is categorized as "public." The following table illustrates the available 
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methods and the scope in effect when accessing the myProfile service through that method 
while mapped to this roleTemplate: 



myProfile roleTemplate rt3 
method jscope/name 

iQuery bnlyPublicElements 



The myProfile roleTemplate rt99 blocks access to the content document. Note that lack 
of a role in the roleList has the same effect as assigning someone to rt99. 



myProfile / Content 

The content document is an identity centric document. Its content and meaning is a 
function of the puid used to address the service. Accessing the document is controlled by the 
associated roleList document. This schema outlined in the following table illustrates the layout 
and meaning of the information found in the content document for the myProfile service. 



<m:myProfile changeNumber -"... v instanccld=*\.. v> 

xnllns:m= 4 1lttp://schemas.microsoft.con^/lls/2001/10/m^'Proflle' , 
xmlnsmc-^ttpV/schemas.microsoft.coni/lis^OOl/lO/mN'Calendar ' 
xnilns:hs="http://schemas.microsoft.coni/lis/2001/10/core">i i 
<m:name changeNumber =". . /' id= creator - ... '>n unbounded 
< m:cat ref- \ .."> 0 unbounded < / nH£at > 
<m:title xml:lang- dir- \./*> n i</ni:title> 
<m:givenName xnililang^../' dir="\..">o i</m:givenName> 
<m:middleNanie xml:lang="..." dir=*\.."> 0 i</m:middlcName> 
<m:surname xml:lang="..." dir=**..." , >„ i</m:suniame> 
^•.suffixxmhlang^'..." dir=*\./ , > 0 l </m:suffix> 
<m:fileAsName xml:lang=*\.. v dir="... v >n i</m:fileAsName> 
{any} 
</m:name> 

<m:memberInformation changeNumber- id- creator-"... '>o unbounded 
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<m:memberNamePortion xml:lang- \.." dir="...">i j</m:memberNamePortion> 
<m:domainNamePortion>K 1 </m:domainNamePortion> 
</m:memberInformation> 

<m:IanguagePreference level=".„" changeNumber= ". . id="..." 
creator- \ . ,"> 0 . U nbounded < /m:languagePreference> 

<m:timeZonePreference changeNumber ^" . . . " id= fct ..." creator= 4 \..">o unbounded 

< m:cat ref- \.."> 0 .unbounded < /nncat > 

<m:timeZone>i..i</m:timeZone> 
</m:timeZonePreference> 

<m:specialDate calendarType^"..." changeNumber =" . id= 

CreatOr="...">0 unbounded 

< m:cat ref==". .."> 0 i</nKcat> 
<m:date>i .i</m:date> 
(any} 
</m:speciaIDate> 

<m:userReference changeNumber - \ .." id- \. " creator - *...">p unbounded 

<hs:name xmlrlang- \." dir="../ , > 0 i</hs:name> 

<hs:puid>o }</hs:puid> 

<hs:email>o..i</hs:email> 

< hs:cat ref="..,">i i< /hs:cat> 

fanvt 
</m:userReference> 

<m:picture changeNumber^ " . . " id=".,." creator ="...">o unbounded 
<micat ref="..."> 0 i< /m:cat> 
<m:url>i i</m:url> 

</m:picture> 

<m:gender chMS^Numbe^" • id- creator -"' .. ? >o i</m:gender> 
<m:identificationNumber changeNumber - \ . . M id="..." creator="... v > 0 unbounded 

< m:cat ref="...">n i< /m:cat> 

<m:number>i..i</m:number> 

fanvt 

</m:identificationNumber> 

<m:workInformation changeNumber = c *..." id=*'..." creator = u ../ , >o unbounded 
<m:cat ref=". . .">o unbounde^ /m : cat > 
<m:profession xml:lang="..." dir=*\. "> 0 i</m:profession> 
<m:jobTitle xml:lang="..." dir="... M > 0 . !</m:jobTitle> 
<m:officeLocation xml:lang=" dir="\.. M > 0 i</m:offieeLocation> 
<m:coworkerOrDepartment>o. unbounded 

<hs:name xml:lang="../' dir= s "../ , >o i</hs:name> 

<hs:puid> 0 ,i</hs:puid> 

<hs:email> 0 .i</hs:email> 

< hs:cat ref=" . ">i i< /hs:cat > 
</m:coworkerOrDepartment> 

Mil 

</m:workInformation> 

<m:address changeNumber=".." id=**../' creator=" ..">n unbounded 
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< hs:cat rgf= vt ... M > 0 U nbounded < /hsicat> 

<hs:officialAddressLine xmUang- dir- \./'> 0 i</lis:officialAddressLine> 

<hs: internal AddressLine xrnHang- \.. 5 ' dir="../'> 0 i</lis:internalAddrcssLine> 

<hs:primaryCity xmHang- dir= v \..">o i</hs:primaryCity> 

<hs: secondary City xmlilang- din="...^> 0 i</hs:secondaryCity> 

<hs:subdivision xml:lang="..." dir=*\.."> 0 i</lis:subdivision> 

<hs:postalCode> 0 i</lis:postalCode> 

<hs:countryCode> 0 i</hs:countryCode> 

<hs:latitude> 0 i</lis:latitude> 

<hs:longitude> 0 . i</hs:longitude> 

<hs:elevation> 0 i</hs:elevation> 

<hs:velocity>o. i 

<hs:speed> 0 .i</hs:speed> 

<hs :direction> 0 . 1 </hs :direction> 
</hs:velocity> 

<hs : confidence>o . i </hs :confidence> 
<hs:precision> 0 i</hs:precision> 

Mil 

</m:address> 

<m:webSite changeNumber - \ . id- creator=* \..">n unbounded 

< m:cat ref=".">n i< /m:cat> 

<m:url> 1 ..i</m:url> 

{ami 
</m:webSite> 

<m:email Address changeNumber - id-"..." creator= ".. /'> 0 unbounded 

< m:cat ref= "... M > 0 un b 0 unded < / micat > 

<m:email>i j</m:email> 

<m:name xmlilang- 4 ...' 1 dir^"..."^) i</m:name> 

{anxl 
</m:emailAddress> 

<m:screenName changeNumber =". id-*../' creator =". ..">$ unbounded 
< m:cat rgf- '..."> 0 i</ m:cat> 
<m:name xml:lang='\.." dir="...*>i 1 </m:name> 

Mil 

</m:screenName> 

<m:telephoneNumber changeNumber- *../' id= creator- \.."'>o unbounded 
< hs:cat ref="../>n »nhnnnd,d</ hs;cat > 
<hs xount ry C ode> 0 . i </lis : count ryC ode> 
<hs:nationalCode>i ]</hs:nationalCode> 
<hs:number>! j</hs:number> 
<hs:numberExtension>o i</hs:numberExtension> 
<hs:pin> 0> i</lis:pin> 

(sail 

</m:teIephoneNumber> 

<m:subscription changeNumber ^'. . /' id="../' creator - \.. M > 0 unbounded 

<hs:trigger select-*../' mode= fc \.." baseChangeNumber=" ,/>i i</hs:trigger> 
<hs:expiresAt>o i</lis:expiresAt> 
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<hs:context uri="...">i. i /g/7y/</hs:context> 




<hs:to>i..i</hs:to> 




</m:subscription> 




<m:securitvCertificate chaneeNumber=" id= 


CreatOr="..."*>o unbounded 


<m:cat ref- \..">n ,mhn,m^rt</m:cat> 




<m:certificate>i..i</m:certificate> 




</m:securityCertificate> 




{any} 




</m:myProfile> 





The meaning of the attributes and elements shown in the table are set forth below, 
wherein in the syntax used in the table, boldface type corresponds to a blue node, and 
underlined type to a red node, as described above, and the minimum occurrence information 
(0, 1) indicates whether an element or attribute is required or optional, and maximum 
occurrence information (1, unbounded) indicates whether one or many are possible. 

The /myProfile (minOccurs=l maxOccurs=l) element encapsulates the content 
document for this service. This element establishes a global cache scope for the service and 
contains other root-level system attributes for this instance of the service. 

The /myProfile/@changeNumber (minOccurs=0 maxOccurs=l) changeNumber 
attribute is designed to facilitate caching of the element and its descendants. This attribute is 
assigned to this element by the .NET My Services system. The attribute is read-only to 
applications. Attempts to write this attribute are silently ignored. 

The /myProfile/@instanceId (string minOccurs=0 maxOccurs=l) attribute is a unique 
identifier typically assigned to the root element of a service. It is a read-only element and 
assigned by the .NET My Services system when a user is provisioned for a particular service. 

The /myProfile/name (minOccurs=0 maxOccurs^nbounded) element encapsulates a 
name associated with the identity. An identity can have multiple names associated with it. 
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These name nodes are not intended to be used for storing screen names or other electronic 
names, but rather to store a commonly used name for the entity. Names contain five parts and 
are meant to be combined in proper order, with spaces separating the parts and empty content 
parts excluded. 

The /myProfile/name/@changeNumber (minOccurs=0 maxOccurs=l) changeNumber 
attribute is designed to facilitate caching of the element and its descendants. This attribute is 
assigned to this element by the .NET My Services system. The attribute is read-only to 
applications. Attempts to write this attribute are silently ignored. 

The /myProfile/name/@id (minOccurs-0 maxOccurs=l) attribute is a globally unique 
ID assigned to this element by .NET My Services. Normally, .NET My Services will generate 
and assign this ID during an insertRequest operation, or possibly during a replaceRequest. 
Application software can override this ID generation by specifying the useClientlds attribute in 
the request message. Once an ID is assigned, the attribute is read-only and attempts to write it 
are silently ignored. 

The /myProfile/name/@creator (string minOccurs=0 maxOccurs=l) attribute identifies 
the creator in terms of userld, appld, and platformld of the node. 

The /myProfile/name/cat (minOccurs=0 maxOccurs=unbounded) element is used to 
categorize the element that contains it by referencing a global category definition in either the 
.NET Categories service system document or an external resource containing category 
definitions, or by referencing an identity centric category definition in the content document of 
the .NET Categories service for a particular puid. 



The /myProfile/name/cat/@ref (anyURI minOccurs=0 maxOccurs=l) attribute 
references a category definition (<catDef7>) element using the rules outlined in the 
myCategories section of the present application. 

The /myProfile/name/title (string minOccurs=0 maxOccurs=l) optional element is 
designed to store a title or prefix associated with the name. Examples are 'Mr.', 'Mrs. 5 , T>r.\ 
or any other commonly used name title or prefix. The /myProfile/name/title/@xml:lang 
(minOccurs=l maxOccurs=l) required attribute is used to specify an ISO 639 language code 
or an ISO 3166 country code as described in RFC 1766 (wherein ISO stands for International 
Organization for Standardization and RFC stands for Request For Comment. The value of this 
attribute indicates the language type of the content within this element. The 
/myProfile/name/title/@dir (string minOccurs=0 maxOccurs=l) optional attribute specifies the 
default layout direction for the localized string. Valid values are rtl (right to left), and ltr (left 
to right). 

The /myProfile/name/givenName (string minOccurs=0 maxOccurs=l) optional element 
is meant to store the first portion of a name. The /myProfile/name/givenName/@xml:lang 
(minOccurs=l maxOccurs=l) required attribute is used to specify an ISO 639 language code 
or an ISO 3166 country code as described in RFC 1766. The value of this attribute indicates 
the language type of the content within this element. The /myProfile/name/givenName/@dir 
(string minOccurs=0 maxOccurs=l) optional attribute specifies the default layout direction for 
the localized string. Valid values are rtl (right to left), and ltr (left to right). 

The /myProfile/name/middleName (string minOccurs^O maxOccurs=l) optional 
element is meant to store the middle portion or initial of a name. The 
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/myProfile/name/middleName/@xml:lang (minOccurs=l maxOccurs=l) required attribute is 
used to specify an ISO 639 language code or an ISO 3166 country code as described in RFC 
1766. The value of this attribute indicates the language type of the content within this element. 
The /myProfile/name/middleName/@dir (string minOccurs=0 maxOccurs=l) optional attribute 
specifies the default layout direction for the localized string. Valid values are rtl (right to left), 
and ltr (left to right). 

The /myProfile/name/surname (string minOccurs=0 maxOccurs^l) optional element is 
meant to store the last portion of a name. The /myProfile/name/surname/@xml:lang 
(minOccurs=l maxOccurs=l) required attribute is used to specify an ISO 639 language code 
or an ISO 3166 country code as described in RFC 1766. The value of this attribute indicates 
the language type of the content within this element. The /myProfile/name/surname/@dir 
(string minOccurs=0 maxOccurs=l) optional attribute specifies the default layout direction for 
the localized string. Valid values are rtl (right to left), and ltr (left to right). 

The /myProfile/name/suffix (string minOccurs=0 maxOccurs=l) optional element is 
designed to store a suffix associated with the name. Examples include c Jr.\ 'Sr.', '111% or any 
other commonly used name suffix. The /myProfile/name/suffix/@xml:lang (minOccurs^l 
maxOccurs=l) required attribute is used to specify an ISO 639 language code or an ISO 3166 
country code as described in RFC 1766. The value of this attribute indicates the language type 
of the content within this element. The /myProfile/name/suflfix/@dir (string minOccurs=0 
maxOccurs=l) optional attribute specifies the default layout direction for the localized string. 
Valid values are rtl (right to left), and ltr (left to right). 



A complete name is usually the combination of title, givenName, middleName, 
surname, and suffix. The /myProfile/name/fileAsName (string minOccurs=0 maxOccurs=l) 
optional element is present to indicate that a different order should be used or that the identity 
prefers to have the name filed differently. The /myProfile/name/fileAsName/@xml:lang 
(minOccurs=l maxOccurs=l) required attribute is used to specify an ISO 639 language code 
or an ISO 3 166 country code as described in RFC 1766. The value of this attribute indicates 
the language type of the content within this element. The /myProfile/name/fileAsName/@dir 
(string minOccurs=0 maxOccurs^l) optional attribute specifies the default layout direction for 
the localized string. Valid values are rtl (right to left), and Itr (left to right). 

The /myProfile/name/{any} (minOccurs=0 maxOccurs=unbounded) allows for 
extensibility of the myProfile schema. 

The /myProfile/memberlnformation (minOccurs=0 maxOccurs=oinbounded) node 
wraps member-specific public information for this entity. The information is not changeable, 
which is reflected in the schemas that modify the content document. 

The /myProfile/memberInformation/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. 

The /myProfile/memberInformation/@id (minOccurs=0 maxOccurs=l) attribute is a 
globally unique ED assigned to this element by .NET My Services. Normally, .NET My 
Services will generate and assign this ID during an insertRequest operation, or possibly during 
a replaceRequest. Application software can override this ID generation by specifying the 
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useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. The /myProfile/memberInformation/@creator 
(string minOccurs=0 maxOccurs^l) attribute identifies the creator in terms of userld, appld, 
and platformld of the node. 

A member name is a combination of a user name portion, and a domain name portion. 
These names are separated with an '@' character to form a fully qualified member name. The 
/myProfile/memberlnformation/memberNamePortion (string minOccurs=l maxOccurs=l) 
element contains the user name portion of the name. For a fully qualified member name of 
someone@microsoft.com, this element contains the value 'someone'. The 
/myProfile/memberInformation/memberNamePortion/@xml:lang (minOccurs=l maxOccurs=l) 
required attribute is used to specify an ISO 639 language code or an ISO 3 166 country code 
as described in RFC 1766. The value of this attribute indicates the language type of the content 
within this element. The /myProfile/memberInformation/memberNamePortion/@dir (string 
minOccurs=0 maxOccurs=l) optional attribute specifies the default layout direction for the 
localized string. Valid values are rtl (right to left), and Itr (left to right). 

The /myProfile/memberlnformation/domainNamePortion (string minOccurs=l 
maxOccurs=l) field contains the other part of the fully qualified member name described 
above, that is, this element contains the domain name portion. For example, for a fully 
qualified member name of someone@microsoft.com, this element contains the value 
'microsoft.com'. 

The /myProfile/languagePreference (string min0ccurs=O maxOccurs=unbounded) 
element specifies the preferred language code of the identity encoded using ISO 639 language 



codes or ISO 3 166 country codes as defined by RFC 1766. The purpose of this value in this 
service is to help guide applications regarding the languages understood by this identity. When 
manipulating localizable content, they should choose from an appropriate language preference. 
When encountering localized content not falling within this set, the software should translate 
into a language understood by this set. 

The /myProfile/languagePreference/@level (string minOccurs=0 maxOccurs=l) 
attribute indicates how well this language is understood by this identity. Valid values include, 
native, fluent, intermediate and beginner. 

The /myProfile/languagePreference/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. 

The /myProfile/languagePreference/@id (minOccurs=0 maxOccurs=l) attribute is a 
globally unique ID assigned to this element by .NET My Services. Normally, .NET My 
Services will generate and assign this ID during an insertRequest operation, or possibly during 
a replaceRequest. Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. 

The/myProfile/languagePreference/@creator (string minOccurs=0 maxOccurs=l) 
attribute identifies the creator in terms of userld, appld, and platformld of the node. 

The /myProfile/timeZonePreference (minOccurs=0 maxOccurs^nanbounded) element 
supplies the base time-zone preference for this entity. 
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The /myProfile/timeZonePreference/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. 

The /myProfile/timeZonePreference/@id (minOccurs=0 maxOccurs=l) attribute is a 
globally unique ID assigned to this element by .NET My Services. Normally, .NET My 
Services will generate and assign this ID during an insertRequest operation, or possibly during 
a replaceRequest Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. 

The /myProfile/timeZonePreference/@creator (string minOccurs=0 maxOccurs=l) 
attribute identifies the creator in terms of userld, appld, and platformld of the node. The 
/myProfile/timeZonePreference/cat (minOccurs=0 maxOccurs=unbounded) element is used to 
categorize the element that contains it by referencing a global category definition in either the 
.NET Categories service system document or an external resource containing category 
definitions, or by referencing an identity centric category definition in the content document of 
the .NET Categories service for a particular puid. 

The /myProfile/timeZonePreference/cat/@ref (anyURI minOccurs=0 maxOccurs=l) 
attribute references a category definition (<catDef/>) element using the rules outlined in the 
myCategories section of the present application. 

The /myProfile/specialDate (minOccurs=0 maxOccurs=unbounded) element 
encapsulates a special date that is important to this entity. Multiple special date nodes may 



exist. This is not a substitute for dates stored on an entity's myCalendar service. The main 
purpose is to provide a convenient place to store a birth date or an anniversary date, because 
these dates are frequently imported into a contact record. The 

/myProfile/specialDate/@calendarType (string minOccurs^O maxOccurs=l) field identifies an 
enumeration which determines the kind of calendar event this is based on the following table, 



(which can be expanded): 



ij Value 


Enumeration Constant 


Description 


1-1 


|hscal>ll_calendars 


Unknown Calendar; system default 
:(HSCAL_GREGORIANUS) 


jl 


1HSCAL GREGORIAN 


Gregorian (localized) calendar 




|HSCAL_GREGORIAN_US 


Gregorian (U.S.) calendar 


13 


1HSCALJAPAN 


Japanese Emperor Era calendar 


|4 


IHSCAL TAIWAN 


Taiwan Era calendar 


15 


IHSCAL KOREA 


Korean Tangun Era calendar 


§ 


jHSCALJUJRI 


Hijri (Arabic Lunar) calendar 


P 


|HSCAL_THAI 


Thai calendar ; 


18 


IHSCAL HEBREW 


Hebrew (Lunar) calendar 


9 


IHSCAL GREGORIAN ME FRENCH 


Gregorian Middle East French calendar 


ho 


|HSCAL_GREGORIAN_ARABIC 


Gregorian Arabic calendar 


11 


|HSCAL_GREGORIAN_XLIT_ENGLISH Gregorian Transliterated English calendar j 


12 


IHSCAL GREGORIAN XLIT FRENCH 


Gregorian Transliterated French calendar 1 


13 


IHSCAL KOREA LUNAR 


Default Korea Lunar calendar 


14 


jHSCALJAPANLUNAR 


Default Japanese Lunar calendar 


1 1 5 


"IHSCAL CHINESE LUNAR 


Chinese Lunar calendar i 


16 


|HSCAL_SAKA 


Indian Saka calendar 


17 


IHSCAL LUNAR ETO CHN 


Chinese Zodiac calendar 


18 


|HSCAL_LUNAR_ETO_KOR 


Korean Zodiac calendar j 


|19" 


"SSC^ LUNAR 7r0KUy6u 


Japanese Lucky days calendar j 
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The /myProfile/specialDate/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. 

The /myProfile/specialDate/@id (minOccurs=0 maxOccurs=l) attribute is a globally 
unique ID assigned to this element by .NET My Services. Normally, .NET My Services will 
generate and assign this ID during an insertRequest operation, or possibly during a 
replaceRequest. Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. 

The /myProfile/specialDate/@creator (string minOccurs=0 maxOccurs=l) attribute 
identifies the creator in terms of userld, appld, and platformld of the node. The 
/myProfile/specialDate/cat (minOccurs=0 maxOccurs=l) element is used to categorize the 
element that contains it by referencing a global category definition in either the .NET 
Categories service system document or an external resource containing category definitions, or 
by referencing an identity centric category definition in the content document of the .NET 
Categories service for a particular puid. 

The /myProfile/specialDate/cat/@ref (anyURI minOccurs=0 maxOccurs=l) attribute 
references a category definition (<catDef/>) element using the rules outlined in the 
myCategories section of the present application. 

The/myProfile/specialDate/{any} (minOccurs=0 maxOccurs=unbounded) allows for 
date-related extensibility. 
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The /myProfile/userReference/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. 

The /myProfile/userReference/@id (minOccurs=0 maxOccurs=l) attribute is a globally 
unique ID assigned to this element by .NET My Services. Normally, .NET My Services will 
generate and assign this ID during an insertRequest operation, or possibly during a 
replaceRequest. Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. 

The /myProfile/userReference/@creator (string minOccurs=0 maxOccurs^l) attribute 
identifies the creator in terms of userld, appld, and platformld of the node. The 
/myProfile/userReference/name (string minOccurs=0 maxOccurs=l) optional element specifies 
the name for the enclosing element. The /myProfile/userReference/name/@xml:lang 
(minOccurs=l maxOccurs=l) required attribute is used to specify an ISO 639 language code 
or an ISO 3 166 country code as described in RFC 1766. The value of this attribute indicates 
the language type of the content within this element. The /myProfile/userReference/name/@dir 
(string minOccurs=0 maxOccurs=l) optional attribute specifies the default layout direction for 
the localized string. Valid values are rtl (right to left), and ltr (left to right). 

The /myProfile/userReference/puid (string minOccurs=0 maxOccurs=l) optional 
element specifies the name for the enclosing element. The /myProfile/userReference/email 
(string minOccurs=0 maxOccurs=l) optional name specifies an email address for the enclosing 
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element. The /myProfile/userReference/cat (minOccurs=l maxOccurs=l) element is used to 
categorize the element that contains it by referencing a global category definition in either the 
.NET Categories service system document or an external resource containing category 
definitions, or by referencing an identity centric category definition in the content document of 
5 the .NET Categories service for a particular puid. 

The /myProfile/userReference/cat/@ref (anyURI minOccursO maxOccurs=l) attribute 
references a category definition (<catDef/>) element using the rules outlined in the 
myCategories section of the present application. 

The /myProfile/userReference/{any} (minOccurs=0 maxOccurs=unbounded) provides 
Q 10 for extensibility of user-reference related data in the myProfile schema. 
** The /myProfile/picture (minOccurs=0 maxOccurs=unbounded) optional element 

encapsulates a URL that points to a picture of the identity. The 
H /myProfile/picture/@changeNumber (minOccurs=0 maxOccurs=l) changeNumber attribute is 

fU designed to facilitate caching of the element and its descendants. This attribute is assigned to 

i y 

^ 15 this element by the .NET My Services system. The attribute is read-only to applications; 
attempts to write this attribute are silently ignored. 

The /myProfile/picture/@id (minOccurs=0 maxOccurs^l) attribute is a globally unique 
ID assigned to this element by .NET My Services. Normally, .NET My Services will generate 
and assign this ID during an insertRequest operation, or possibly during a replaceRequest. 
20 Application software can override this ID generation by specifying the useClientlds attribute in 
the request message. Once an ID is assigned, the attribute is read-only and attempts to write it 
are silently ignored. 
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The /myProfile/picture/@creator (string minOccurs=0 maxOccurs=l) attribute 
identifies the creator in terms of userld, appld, and platformld of the node. 

The /myProfile/picture/cat (minOccurs=0 maxOccurs=l) element is used to categorize 
the element that contains it by referencing a global category definition in either the .NET 
5 Categories service system document or an external resource containing category definitions, or 
by referencing an identity centric category definition in the content document of the .NET 
Categories service for a particular puid. The /myProfile/picture/cat/@ref (anyURI 
minOccurs=0 maxOccurs=l) attribute references a category definition (<catDef/>) element 
using the rules outlined in the myCategories section of the present application. The 

Q 10 /myProfile/picture/url (string minOccurs=l maxOccurs=l) element contains the URL that 

fU 

** points to the actual picture. The /myProfile/picture/{any} (minOccursO 

12 maxOccurs=unbounded) provides for extensibility of picture-related data. 

;jU The /myProfile/gender (string minOccurs=0 maxOccurs=l) element specifies the 

fU gender for this entity. There can only be a single gender associated with an entity. The format 

•S 13? 

H 15 of this element is a single, 7-bit ASCII character with one of two possible values: *m' for male, 
and T for female. The /myProfile/gender/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. The 
20 /myProfile/gender/@id (minOccurs=0 maxOccurs=l) attribute is a globally unique ID assigned 
to this element by .NET My Services. Normally, .NET My Services will generate and assign 
this ID during an insertRequest operation, or possibly during a replaceRequest. Application 
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software can override this ID generation by specifying the useClientlds attribute in the request 
message. Once an ID is assigned, the attribute is read-only and attempts to write it are silently 
ignored. The /myProfile/gender/@creator (string minOccurs=0 maxOccurs=l) attribute 
identifies the creator in terms of userld, appld, and platformld of the node. 

The /myProfile/identificationNumber (minOccurs=0 maxOccurs=unbounded) optional 
element encapsulates an identification number for the entity. Things like an employee ID 
number, social security number, national ID number, drivers license number, and so on, may be 
stored within this element. The /myProfile/identificationNumber/@changeNumber 
(minOccurs=0 maxOccurs=l) changeNumber attribute is designed to facilitate caching of the 
element and its descendants. This attribute is assigned to this element by the .NET My Services 
system. The attribute is read-only to applications. Attempts to write this attribute are silently 
ignored. The /myProfile/identificationNumber/@id (minOccurs=0 maxOccurs=l) attribute is a 
globally unique ID assigned to this element by .NET My Services. Normally, .NET My 
Services will generate and assign this ID during an insertRequest operation, or possibly during 
a replaceRequest. Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. 

The /myProfile/identificationNumber/@creator (string minOccurs=0 maxOccurs=l) 
attribute identifies the creator in terms of userld, appld, and platformld of the node. The 
/myProfile/identificationNumber/cat (minOccurs=0 maxOccurs^l) element is used to 
categorize the element that contains it by referencing a global category definition in either the 
.NET Categories service system document or an external resource containing category 



definitions, or by referencing an identity centric category definition in the content document of 
the .NET Categories service for a particular puid. The 

/myProfile/identificationNumber/cat/@ref (anyURI minOccursO maxOccurs=l) attribute 
references a category definition (<catDef7>) element using the rules outlined in the 
myCategories section of the present application. 

The /myProfile/identificationNumber/number (string minOccurs=l maxOccurs^l) 
element contains the actual identification number value. The 

/myProfile/identificationNumber/{any} (minOccurs=0 maxOccurs^unbounded) provides for 
extensibility. 

The /myProfile/worklnformation (minOccurs=0 maxOccurs^unbounded) element 
encapsulates work-related or occupation-related information for this entity. The 
/myProfile/workInformation/@changeNumber (minOccurs=0 maxOccurs=l) changeNumber 
attribute is designed to facilitate caching of the element and its descendants. This attribute is 
assigned to this element by the .NET My Services system. The attribute is read-only to 
applications. Attempts to write this attribute are silently ignored. 

The /myProfile/workInformation/@id (minOccurs=0 maxOccurs=l) attribute is a 
globally unique ID assigned to this element by .NET My Services. Normally, .NET My 
Services will generate and assign this ID during an insertRequest operation, or possibly during 
a replaceRequest Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. 
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The /myProfile/workInformation/@creator (string minOccurs=0 maxOccurs=l) 
attribute identifies the creator in terms of userld, appld, and platformld of the node. The 
/myProfile/worklnformation/cat (minOccurs=0 maxOccurs=unbounded) element is used to 
categorize the element that contains it by referencing a global category definition in either the 
.NET Categories service system document or an external resource containing category 
definitions, or by referencing an identity centric category definition in the content document of 
the .NET Categories service for a particular puid. The /myProfile/workInformation/cat/@ref 
(anyURI minOccurs^O maxOccurs=l) attribute references a category definition (<catDef/>) 
element using the rules outlined in the myCategories section of the present application. 

The /myProfile/worklnformation/profession (string minOccurs=0 maxOccurs=l) 
optional element specifies the entity's profession within this particular worklnformation 
element. The /myProfile/workInformation/profession/@xml:lang (minOccurs=l 
maxOccurs=l) required attribute is used to specify an ISO 639 language code or an ISO 3 166 
country code as described in RFC 1766. The value of this attribute indicates the language type 
of the content within this element. The /myProfile/workInformation/profession/@dir (string 
minOccurs=0 maxOccurs=l) optional attribute specifies the default layout direction for the 
localized string. Valid values are rtl (right to left), and ltr (left to right). 

The /myProfile/worklnformation/jobTitle (string minOccurs=0 maxOccurs=l) element 
specifies the job title for this piece of work information. The 

/myProfile/workInformation/jobTitle/@xml:lang (minOccurs=l maxOccurs=l) required 
attribute is used to specify an ISO 639 language code or an ISO 3 166 country code as 
described in RFC 1766. The value of this attribute indicates the language type of the content 
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within this element. The /myProfile/workInformation/jobTitle/@dir (string minOccurs=0 
maxOccurs=l) optional attribute specifies the default layout direction for the localized string. 
Valid values are rtl (right to left), and ltr (left to right). 

The /myProfile/worklnformation/officeLocation (string minOccurs=0 maxOccurs=l) 
element specifies the office location for this piece of work information. The 
/myProfile/workInformation/officeLocation/@xml:lang (minOccurs=l maxOccurs=l) required 
attribute is used to specify an ISO 639 language code or an ISO 3166 country code as 
described in RFC 1766. The value of this attribute indicates the language type of the content 
within this element. The /myProfile/workInformation/officeLocation/@dir (string 
minOccurs=0 maxOccurs=l) optional attribute specifies the default layout direction for the 
localized string. Valid values are rtl (right to left), and ltr (left to right). 

The /myProfile/worklnformation/coworkerOrDepartment (minOccurs=0 
maxOccurs=unbounded) element encapsulates information about this entity's manager, 
assistant, company, department, and so on. The information can include its name, its PUID and 
its email address. Using this anchor information, additional details may be obtained. The 
required cat element indicates the relationship of the element to this entity (e.g., 
ref=" sy st em#manager") . 

The /myProfile/worklnformation/coworkerOrDepartment/name (string minOccurs=0 
maxOccurs=l) optional element specifies the name for the enclosing element. The 
/myProfile/workInformation/coworkerOrDepartment/name/@xml:lang (minOccurs=l 
maxOccurs=l) required attribute is used to specify an ISO 639 language code or an ISO 3166 
country code as described in RFC 1766. The value of this attribute indicates the language type 
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of the content within this element. The 

/myProfile/workInformation/coworkerOrDepartment/name/@dir (string minOccurs=0 
maxOccurs=l) optional attribute specifies the default layout direction for the localized string. 
Valid values are rtl (right to left), and Itr (left to right). 

The /myProfile/worklnformation/coworkerOrDepartment/puid (string minOccurs=0 

maxOccurs=l) optional element specifies the name for the enclosing element. The 
/myProfile/worklnformation/coworkerOrDepartment/email (string minOccurs=0 
maxOccurs=l) optional name specifies an email address for the enclosing element. The 
/myProfile/worklnformation/coworkerOrDepartment/cat (minOccurs= 1 maxOccurs=l ) 
element is used to categorize the element that contains it by referencing a global category 
definition in either the .NET Categories service system document or an external resource 
containing category definitions, or by referencing an identity centric category definition in the 
content document of the .NET Categories service for a particular puid. The 
/myProfile/workInformation/coworkerOrDepartment/cat/@ref (anyURI minOccurs=0 
maxOccurs=l) attribute references a category definition (<catDef/>) element using the rules 
outlined in the myCategories section of the present application. The 
/myProfile/workInformation/{any} (minOccurs=0 maxOccurs=unbounded) provides for 
extensibility. 

The /myProfile/address (minOccurs=0 maxOccurs=unbounded) element encapsulates a 
geographic address. The contained nodes describe the geographic address in detail. Typical 
use is one address element for each geographical address for this identity. For instance, a user 
with a primary home and a vacation home might have two address elements in this service. 
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The /myProfile/address/@changeNumber (minOccurs=0 maxOccurs^l) changeNumber 
attribute is designed to facilitate caching of the element and its descendants. This attribute is 
assigned to this element by the .NET My Services system. The attribute is read-only to 
applications; attempts to write this attribute are silently ignored. 

The /myProfile/address/@id (minOccurs=0 maxOccurs=l) attribute is a globally unique 
ID assigned to this element by .NET My Services. Normally, .NET My Services will generate 
and assign this ID during an insertRequest operation, or possibly during a replaceRequest. 
Application software can override this ID generation by specifying the useClientlds attribute in 
the request message. Once an ID is assigned, the attribute is read-only and attempts to write it 
are silently ignored. 

The /myProfile/address/@creator (string minOccurs=0 maxOccurs-1) attribute 
identifies the creator in terms of userld, appld, and platformld of the node. The 
/myProfile/address/cat (minOccurs=0 maxOccurs=unbounded) element is used to categorize 
the element that contains it by referencing a global category definition in either the .NET 
Categories service system document or an external resource containing category definitions, or 
by referencing an identity centric category definition in the content document of the .NET 
Categories service for a particular puid. The /myProfile/address/cat/@ref (anyURI 
minOccurs=0 maxOccurs=l) attribute references a category definition (<catDef/>) element 
using the rules outlined in the myCategories section of the present application. 

The /myProfile/address/officialAddressLine (string minOccurs=0 maxOccurs=l) 
element contains the most precise, official line for the address relative to the postal agency 
servicing the area specified by the city(s)/postalCode. When parsing an address for official 
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postal usage, this element contains the official, parsable address line that the regional postal 
system cares about. Typical usage of this element would be to enclose a street address, post 
office box address, private bag, or any other similar official address. Internal routing 
information like department name, suite number within a building, internal mailstop number, or 
similar properties should be placed within the internalAddressLine element. The 
/myProfile/address/officialAddressLine/@xml:lang (minOccurs=l maxOccurs=l) required 
attribute is used to specify an ISO 639 language code or an ISO 3166 country code as 
described in RFC 1766. The value of this attribute indicates the language type of the content 
within this element. The /myProfile/address/officialAddressLine/@dir (string minOccurs=0 
maxOccurs-1) optional attribute specifies the default layout direction for the localized string. 
Valid values are rtl (right to left), and ltr (left to right). 

The /myProfile/address/internalAddressLine (string minOccurs=0 maxOccurs^l) 
element contains internal routing information relative to the address specified by the 
officialAddressLine. Items like department name, suite number within a building, internal 
mailstop number, or similar properties should be placed within this element. The 
/myProfile/address/internalAddressLine/@xml:lang (minOccurs=l maxOccurs=l) required 
attribute is used to specify an ISO 639 language code or an ISO 3 166 country code as 
described in RFC 1766. The value of this attribute indicates the language type of the content 
within this element. The /myProfile/address/internal AddressLine/@dir (string minOccurs=0 
maxOccurs=l) optional attribute specifies the default layout direction for the localized string. 
Valid values are rtl (right to left), and ltr (left to right). 
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The /myProfile/address/primaryCity (string minOccurs=0 maxOccurs=l) element 
defines the primary city for this address. The /myProfiIe/address/primaryCity/@xml:lang 
(minOccurs=l maxOccurs=l) required attribute is used to specify an ISO 639 language code 
or an ISO 3166 country code as described in RFC 1766. The value of this attribute indicates 
the language type of the content within this element. The /myProfile/address/primaryCity/@dir 
(string minOccurs=0 maxOccurs=l) optional attribute specifies the default layout direction for 
the localized string. Valid values are rtl (right to left), and ltr (left to right). 

The /myProfile/address/secondaryCity (string minOccurs=0 maxOccurs=l) optional 
element defines the secondary city for this address. Example types for this element include city 
district, city wards, postal towns, and so on. The /myProfile/address/secondaryCity/@xml:lang 
(minOccurs=l maxOccurs=l) required attribute is used to specify an ISO 639 language code 
or an ISO 3166 country code as described in RFC 1766. The value of this attribute indicates 
the language type of the content within this element. The 

/myProfile/address/secondaryCity/@dir (string minOccurs=0 maxOccurs=l) optional attribute 
specifies the default layout direction for the localized string. Valid values are rtl (right to left), 
and ltr (left to right). 

The /myProfile/address/subdi vision (string minOccurs=0 maxOccurs=l) element 
contains the official subdivision name within the country or region for this address. In the 
United States, this element would contain the two letter abbreviation for the name of the state. 
This element is also commonly treated as the "first order admin subdivision" and will typically 
contain subdivision names referring to administrative division, Bundesstaat, canton, federal 
district, province, region, state or territory. The /myProfile/address/subdivision/@xml:lang 
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(minOccurs=l maxOccurs=l) required attribute is used to specify an ISO 639 language code 
or an ISO 3166 country code as described in RFC 1766. The value of this attribute indicates 
the language type of the content within this element. The /myProfile/address/subdivision/@dir 
(string minOccurs=0 maxOccurs=l) optional attribute specifies the default layout direction for 
the localized string. Valid values are rtl (right to left), and Itr (left to right). 

The /myProfile/address/postalCode (string minOccurs=0 maxOccurs=l) element 
contains the official postal code for this address. The /myProfile/address/countryCode (string 
minOccurs=0 maxOccurs=l) element contains the 2 letter ISO-3166 id of the country, 
dependency, or functionally equivalent region for this address. The /myProfile/address/latitude 
(string minOccurs=0 maxOccurs=l) element specifies the latitude value for this address in units 
of decimal degrees. Geodetic datum WGS84 is required. The /myProfile/address/longitude 
(string minOccurs=0 maxOccurs=l) element specifies the longitude value for this address in 
units of decimal degrees. Geodetic datum WGS84 is required. The 
/myProfile/address/elevation (string minOccurs=0 maxOccurs=l) element specifies the 
elevation above sea level with respect to WGS84 geodetic datum. The units for this value is 
meters. 

The /myProfile/address/velocity (minOccurs^O maxOccurs=l) element specifies the last 
reported velocity associated with this address. Of course, for fixed addresses the velocity node 
would either not be present, or speed would be zero indication stationary position. The 
/myProfile/address/velocity/speed (string minOccurs=0 maxOccurs=l) element specifies the 
last known speed associated with this report in units of meters per second. The 
/myProfile/address/velocity/direction (string minOccurs=0 maxOccurs=l) element specifies the 
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last known direction associated with this report in units of degrees decimal. The 
/myProfile/address/confidence (string minOccurs=0 maxOccurs=l) element specifies a 
percentage value that indicates the confidence value that this location is accurate within the 
specified precision. The /myProftle/address/precision (string minOccursO maxOccurs=l) 
element specifies the precision in meters of this location. The value defines a spherical zone 
that the location falls within. The /myProfiIe/address/{any} (minOccurs=0 
maxOccurs=unbounded) field allows for address-related extensibility. 

The /myProfile/webSite (minOccurs^O maxOccurs=unbounded) element encapsulates 
an electronic address for this entity, specifically, it contains a web site or URL associated with 
this identity. This element may be repeated any number of times. Typical use is one WebSite 
element for each web site associated with this identity. The 

/myProfile/webSite/@changeNumber (minOccurs=0 maxOccurs=l) changeNumber attribute is 
designed to facilitate caching of the element and its descendants. This attribute is assigned to 
this element by the .NET My Services system. The attribute is read-only to applications. 
Attempts to write this attribute are silently ignored. 

The /myProfile/webSite/@id (minOccurs^O maxOccurs^l) attribute is a globally 
unique ID assigned to this element by .NET My Services. Normally, .NET My Services will 
generate and assign this ID during an insertRequest operation, or possibly during a 
replaceRequest. Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. The /myProfile/webSite/@creator (string 
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minOccurs=0 maxOccurs=l) attribute identifies the creator in terms of userld, appld, and 
platformld of the node. 

The /myProfile/webSite/cat (minOccurs=0 maxOccurs=l) element is used to categorize 
the element that contains it by referencing a global category definition in either the .NET 
Categories service system document or an external resource containing category definitions, or 
by referencing an identity centric category definition in the content document of the .NET 
Categories service for a particular puid. The /myProfile/webSite/cat/@ref (anyURI 
minOccurs=0 maxOccurs=l) attribute references a category definition (<catDef/>) element 
using the rules outlined in the myCategories section of the present application. The 
/myProfile/webSite/url (string minOccurs=l maxOccurs=l) element contains the URL for this 
web site. If the site is accessible through multiple URLs, this element may be repeated an 
appropriate number of times. The /myProfile/webSite/{any} (minOccurs=0 
maxOccurs=unbounded) provides for extensibility. 

The /myProfile/emailAddress (minOccurs=0 maxOccurs=unbounded) element 
encapsulates an electronic address for this entity, specifically, it contains an email address 
associated with this identity. This element may be repeated any number of times. Typical use is 
one emailAddress element for each email address associated with this identity. The 
/myProfile/emailAddress/@changeNumber (minOccurs=0 maxOccurs=l) changeNumber 
attribute is designed to facilitate caching of the element and its descendants. This attribute is 
assigned to this element by the .NET My Services system. The attribute is read-only to 
applications. Attempts to write this attribute are silently ignored. 



The /myProfile/emailAddress/@id (minOccurs=0 maxOccurs=l) attribute comprises a 
globally unique ID assigned to this element by .NET My Services. Normally, .NET My 
Services will generate and assign this ID during an insertRequest operation, or possibly during 
a replaceRequest. Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. The /myProfile/emailAddress/@creator (string 
minOccurs=0 maxOccurs=l) attribute identifies the creator in terms of userld, appld, and 
platformld of the node. The /myProfile/emailAddress/cat (minOccurs=0 
maxOccurs=unbounded) element is used to categorize the element that contains it by 
referencing a global category definition in either the .NET Categories service system document 
or an external resource containing category definitions, or by referencing an identity centric 
category definition in the content document of the .NET Categories service for a particular 
puid. The /myProfile/emailAddress/cat/@ref (anyURI minOccurs=0 maxOccurs=l) attribute 
references a category definition (<catDef/>) element using the rules outlined in the 
myCategories section of the present application. 

The /myProfile/emailAddress/email (string minOccurs=l maxOccurs=l) element 
contains the actual value of the email address (e.g. someone@microsoft.com). The 
/myProfile/emailAddress/name (string minOccurs=0 maxOccurs=l) element contains the 
friendly, or display name associated with this email address. The 

/myProfile/emailAddress/name/@xml:lang (minOccurs=l maxOccurs=l) required attribute is 
used to specify an ISO 639 language code or an ISO 3 166 country code as described in RFC 
1766. The value of this attribute indicates the language type of the content within this element. 
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The /myProfile/emailAddress/name/@dir (string minOccurs=0 maxOccurs=l) optional 
attribute specifies the default layout direction for the localized string. Valid values are rtl (right 
to left), and ltr (left to right). The /myProfile/emailAddress/{any} (minOccurs=0 
maxOccurs=unbounded) field allows for extensibility. 

The /myProfile/screenName (minOccurs=0 maxOccurs=unbounded) element 
encapsulates an electronic address for this entity, specifically, it contains a screen name 
commonly used in real time communications applications like instant messaging applications, 
chat rooms, and so on. This element may be repeated any number of times, and the type 
attribute may be used for simple classifications on the screenName. 

The /myProfile/screenName/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. The 
/myProfile/screenName/@id (minOccurs=0 maxOccurs^l) attribute is a globally unique ID 
assigned to this element by .NET My Services. Normally, .NET My Services will generate and 
assign this ID during an insertRequest operation, or possibly during a replaceRequest. 
Application software can override this ID generation by specifying the useClientlds attribute in 
the request message. Once an ID is assigned, the attribute is read-only and attempts to write it 
are silently ignored. 

The /myProfile/screenName/@creator (string minOccurs=0 maxOccurs=l) attribute 
identifies the creator in terms of userld, appld, and platformld of the node. The 
/myProfile/screenName/cat (minOccurs=0 maxOccurs=l) element is used to categorize the 
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element that contains it by referencing a global category definition in either the .NET 
Categories service system document or an external resource containing category definitions, or 
by referencing an identity centric category definition in the content document of the .NET 
Categories service for a particular puid. The /myProfile/screenName/cat/@ref (anyllRI 
minOccurs=0 maxOccurs=l) attribute references a category definition (<catDef7>) element 
using the rules outlined in the myCategories section of the present application. The 
/myProfile/screenName/name (string minOccurs=l maxOccurs^l) element contains the value 
of the screen name. The /myProfile/screenName/name/@xml:lang (minOccurs=l 
maxOccurs=l) required attribute is used to specify an ISO 639 language code or an ISO 3 166 
country code as described in RFC 1766. The value of this attribute indicates the language type 
of the content within this element. The /myProfile/screenName/name/@dir (string 
minOccurs=0 maxOccurs=l) optional attribute specifies the default layout direction for the 
localized string. Valid values are rtl (right to left), and ltr (left to right). The 
/myProfile/screenName/{any) (minOccurs=0 maxOccurs=unbounded) provides for 
extensibility. 

The /myProfile/telephoneNumber (minOccurs=0 maxOccurs=unbounded) element 
encapsulates an electronic address for this entity, specifically, it contains a telephone number. 
This element may be repeated any number of times. Typical use is one telephoneNumber 
element for each phone number associated with this identity. A telephone number is an 
optional country code, a required nationalCode (US area code), a number, an optional 
extension, and an optional pin. 
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The /myProfile/telephoneNumber/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. The 
5 /myProfile/telephoneNumber/@id (minOccurs=0 maxOccurs=l) attribute is a globally unique 
ID assigned to this element by .NET My Services. Normally, .NET My Services will generate 
and assign this ID during an insertRequest operation, or possibly during a replaceRequest. 
Application software can override this ID generation by specifying the useClientlds attribute in 
the request message. Once an ID is assigned, the attribute is read-only and attempts to write it 



If] 10 are silently ignored. The /myProfile/telephoneNumber/@creator (string minOccurs=0 

1*1; 

fU maxOccurs=l) attribute identifies the creator in terms of userld, appld, and platformld of the 

node. The /myProfile/telephoneNumber/cat (minOccurs=0 maxOccurs=unbounded) element is 



used to categorize the element that contains it by referencing a global category definition in 



■M 15 category definitions, or by referencing an identity centric category definition in the content 




either the .NET Categories service system document or an external resource containing 



document of the .NET Categories service for a particular puid. The 



/myProfile/telephoneNumber/cat/@ref (anyURI minOccurs=0 maxOccurs=l) attribute 



references a category definition (<catDef/>) element using the rules outlined in the 



myCategories section of the present application. 



20 



The /myProfile/telephoneNumber/countryCode (string minOccurs=0 maxOccurs=l) 



optional element specifies the country code for this telephone number. The 



/myProfile/telephoneNumber/nationalCode (string minOccurs=l maxOccurs=l) element 
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specifies the national code for this phone number. For US telephone numbers, this is equivalent 
to the area code. The /myProfile/telephoneNumber/number (string minOccurs=l 
maxOccurs=l) element specifies the actual telephone number within the country and national 
code number scheme. The /myProfile/telephoneNumber/numberExtension (string 
minOccurs=0 maxOccurs=l) optional element specifies an extension used to reach this identity 
and this number. The /myProfile/telephoneNumber/pin (string minOccurs=0 maxOccurs=l) 
optional element specifies a pin number used on this phone number. A pin is similar to an 
extension, but pin's are commonly used to address pagers while extensions are typically used 
to address phones relative to a local pbx. The /myProfile/telephoneNumber/{any} 
(minOccurs=0 maxOccurs=unbounded) allows for telephone number-related extensibility. 

The /myProfile/subscription (minOccurs^O maxOccurs=unbounded) element defines a 
subscription node as described above in the subscription section. 

The /myProfile/securityCertificate (minOccurs=0 maxOccurs=unbounded) node has 
thereunder the /myProfile/securityCertificate/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute, which is designed to facilitate caching of the element and its 
descendants. This attribute is assigned to this element by the .NET My Services system. The 
attribute is read-only to applications. Attempts to write this attribute are silently ignored. The 
/myProfile/securityCertificate/@id (minOccurs=0 maxOccurs=l) attribute is a globally unique 
ID assigned to this element by .NET My Services. Normally, .NET My Services will generate 
and assign this ID during an insertRequest operation, or possibly during a replaceRequest. 
Application software can override this ID generation by specifying the useClientlds attribute in 
the request message. Once an ID is assigned, the attribute is read-only and attempts to write it 
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are silently ignored. The /myProfile/securityCertificate/@creator (string minOccurs=0 
maxOccurs=l) attribute identifies the creator in terms of userld, appld, and platformld of the 
node. 

The /myProfile/securityCertificate/cat (minOccurs=0 maxOccurs=unbounded) element 
is used to categorize the element that contains it by referencing a global category definition in 
either the .NET Categories service system document or an external resource containing 
category definitions, or by referencing an identity centric category definition in the content 
document of the .NET Categories service for a particular puid. The 
/myProfile/securityCertificate/cat/@ref (anyURI minOccurs=0 maxOccurs=l) attribute 
references a category definition (<catDef/>) element using the rules outlined in the 
myCategories section of the present application. The /myProfile/securityCertificate/certificate 
(hexBinary minOccurs=l maxOccurs=l) maintains the data, with the /myProfile/{any} 
(minOccurs=0 maxOccurs=unbounded) providing extensibility. 

The myProfile content document include a subscription node that essentially takes 
action when items change, such as to propagate information about the change to other 
services. 

The /myProfile/subscription (minOccurs=0 maxOccurs=unbounded) element defines a 
subscription node that is designed to be an xdb:blue node which when placed in a content 
document causes a subscription to be registered, (wherein as used herein, the string 
"myProfile" referred to in this section can be replaced by an appropriate service name, e.g., 
"myApplicationSettings" or "myProfile" or u my Wallet" and so forth). A subscription contains 
a trigger element which selects a scope of coverage. When items that are under this scope of 
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coverage change, a subscriptionResponse message is generated and sent to the specified 
destination address. 

The/myProfile/subscription/@changeNurnber (minOccurs=0 maxOccurs^l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system, and the attribute is 
read-only to applications; attempts to write this attribute are silently ignored. 
The /myProfile/subscription/@id (minOccurs=0 maxOccurs=l) attribute is a globally unique ID 
assigned to this element by .NET My Services. Normally, .NET My Services will generate and 
assign this ID during an insertRequest operation, or possibly during a replaceRequest. 
Application software can override this ID generation by specifying the useClientlds attribute in 
the request message. Once an ID is assigned, the attribute is read-only and attempts to write it 
are silently ignored. 

The/myProfile/subscription/@creator (string minOccurs=0 maxOccurs=l) attribute 
identifies the creator in terms of userld, appld, and platformld of the node. The 
/myProfile/subscription/trigger (minOccurs^l maxOccurs=l) includes the 
/myProfile/subscription/trigger/@select (string minOccurs=0 maxOccurs=l) item, which 
specifies an XP ATH expression that specifies the nodes that are to be selected and watched for 
changes. The selection may only select xdb:blue nodes, as described above. A s changes in 
this node set occur, they trigger the generation of a subscription message. These messages are 
then sent to the SOAP receiver listed in the "to" element. 

The /myProfile/subscription/trigger/@mode (string minOccurs=0 maxOccurs=l) 
attribute specifies whether or not the content of the changes that triggered the subscription are 
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delivered in the subscription message, or if the message simply indicates that something 
changed under the trigger. The attribute may comprise indudeData, namely that the data that 
changed and caused the subscription to trigger is included in the subscription message. Note 
that deleted nodes are specified by their id, not by value. Alternatively the attribute may 
comprise excludeData, whereby the data that changed, causing the subscription to trigger, is 
not included in the subscription message. 

The/myProfile/subscription/trigger/@baseChangeNumber (minOccurs=0 
maxOccurs=l) attribute specifies the changeNumber value that the trigger is relative to. All 
changes between the specified change number, and the current state of the document relative 
to the selection are transmitted as subscription messages. This allows a client application to 
establish a subscription relative to some baseline. As in changeQuery, if the 
baseChangeNumber is way out of date relative to the current state of the document, and the 
service can not supply the changes in the subscription message, the subscription insert is 
rejected. A value of zero (0) means that the current values of the selected nodes are 
transmitted in the subscription message. 

The /myProfile/subscript ion/expires At (dateTime minOccurs=0 maxOccurs=l) 
optional element specifies an absolute time after which the subscription is no longer active. 
The subscription node is automatically removed when the subscription expires. If this element 
is missing, the subscription does not expire. The /myProfile/subscription/context 
(minOccurs=l maxOccurs=l) element returns the context element from the original 
subscription. Applications should use this element to correlate the subscription response with 
one of their subscriptions. 
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The/myProfile/subscription/context/@uri (anyURl minOccurs=0 maxOccurs=l) 
attribute specifies the URI value chosen by the subscriber that is associated with this 
subscription. The /myProfile/subscription/context/{any} (minOccurs=0 
maxOccurs=unbounded) including the /myProfile/subscription/to (anyURl minOccurs=l 
maxOccurs=l) attribute specifies the location that is to receive the subscription message. The 
value of this element may be hs:myAlerts, whereby this URI indicates that generated 
subscription messages are to be delivered inside the body of a notification and delivered to the 
default .NET Alerts service of the creator. Alternatively, the value may be protocol ://service, 
whereby this URI indicates that generated subscription messages are delivered to the specified 
service at the domain of the creator's platformld. For example, a platformld indicating 
microsoft.com, and a value in this element of http://subscriptionResponse would cause delivery 
of the subscription message to http://subscriptionResponse.microsoft.com. If this value is not 
specified, then the subscription message is delivered as a notification to the "creator's" .NET 
Alerts service. The /myProfile/{any} (minOccurs=0 maxOccurs=unbounded) field allows for 
extensibility. 

MyProfile /System 

The system document is a global document for each service, having content and 
meaning that is independent of the puid used to address the service. The document is read 
only to all users. Each system document contains a set of base items common to each of the 
.NET My Services described herein, and is optionally extended by each service to include 



-62- 



service-specific global information. The following schema outline illustrates the layout and 

meaning of the information found in the my Profile system document: 

TABLE - /*actual service name*/ system 

<sys:system changeNumber= " ..." instanceld-* ..." 

xmlns:hs- ' http://schemas.microsoft.com/lis/2001/10/core" 

xmlns:sys=" http://schemas.microsoft.com/Iis/2001/10The factual service name*/system" >i .] 
<hs:systemVersion changeNumber = u ..." id-* ..." creator- ' ...">] 1 

<hs: version majorVersion="\. ." minorVersion-\. ." buildNumber=*' ..." qfe="...">Ki 
<hs:productReleaseName>i i </lis:productReleaseName> 
^s^roductlmplementationNamO! l </lis:productImplementationName> 
</lis:version> 

<hs :buildDate>! . } </hs :bu ildDate> 

<hs:buildDetails machine=" ..." branch-" ..." type=" ..." official" ...">i.i</lis:buildDetails> 
</hs:systemVersion> 

<hs:roleMap changeNumbei ..." id=" ..." creator - * ..." >\ \ 

<hs:SC0pe id=" S ..." >0 unbounded 

<hs:name xmhlang^"' ..." dir=" ...">n un bounded < /l^s:name> 
<hs:shape base- * .. ">i i 

<hs:include select=" ..." >r> unbounded^sancludo 

<hs:exclude select- * ..." > (J U nbound*i < /hs:exclude> 
</hs:shape> 
</lis:scope> 

<hs:roleTemplate name=" ..." priority" ..." > 0 unbounded 

<hs:fiillDescription xml:Iang=" ..." dir=" ..." > 0 i</hs;fiillDescription> 
<hs:method name=" ..." scopcRef=" ..." > 0 unbounded < /hs:mcthod> 
</lis:roleTemplate> 
</hs:roleMap> 

<hs:methodMap changeNumber - ' ..." id-* ..." creator -" ...">i 1 

<hs:method name- ' ..." >o unbounded fany}<Jhs'mcthod> 
</hs:methodMap> 

<hs:schemaMap changeNumber = * ..." id=* ..." creator -" ,..">i i 

<hs:schema namespace- * ..." schemaLocation- fc ..." alias= %v ..." > 0 unbounded {any}</bs:schemti> 
</hs;schemaMap> 

<hs:wsdlMap changeNumber - ' ..." id=" ..." creator^ " ..">] 1 

<hs:vvsdl \vsdlLocation=" ..." > ti unbounded fanyJ<Jhs:\\sdl> 

<hs:disco discoLocation=" ..." > 0 unbounded /#/?r/</hs:disco> 

<hs:wsil wsilLocation=" ..." >„ unbounded {any}</hs:\vsil> 
</hs:wsdlMap> 
</any> 

</sys:system> 
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The meaning of the attributes and elements shown in the preceding sample document 
outline follow, beginning with /system (minOccurs=l maxOccurs=l), the element that 
encapsulates a system document common to the various services. Although each service has 
its own system document, the common system document attributes and elements are described 
once, for purposes of simplicity, with service-specific system document attributes and elements 
specified for each service, below. The /system/@changeNumber (minOccurs=0 maxOccurs=l) 
attribute is designed to facilitate caching of the element and its descendants. This attribute is 
assigned to this element by the .NET My Services system. The attribute is read-only to 
applications. Attempts to write this attribute are silently ignored. 

The /system/@instanceld (string minOccurs=0 maxOccurs=l) attribute is a unique 
identifier typically assigned to the root element of a service. It is a read-only element and 
assigned by the .NET My Services system when a user is provisioned for a particular service. 

The /system/system Version (minOccurs=l maxOccurs=l) element defines version 
information describing this instance of the .NET My Services service. The 
/systemVersion/@changeNumber (minOccurs=0 maxOccurs=l) changeNumber attribute is 
designed to facilitate caching of the element and its descendants. This attribute is assigned to 
this element by the .NET My Services system. The attribute is read-only to applications; 
attempts to write this attribute are silently ignored, (e.g., without generating an error). 

The /system/system Version/@id (minOccurs=0 maxOccurs=l) attribute is a globally 
unique ID assigned to this element by .NET My Services. Normally, NET My Services will 
generate and assign this ID during an insertRequest operation, or possibly during a 
replaceRequest Application software can override this ID generation by specifying the 
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useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. 

The /system/system Version/@creator (string minOccurs=0 maxOccurs=l) attribute 
identifies the creator in terms of userld, appld, and platformld of the node. The 
/system/system Version/version (minOccurs=l maxOccurs=l) element defines major, minor, 
and build number version information. The /system/system Version/version/@majorVersion 
(string minOccurs=0 maxOccurs=l) attribute specifies the major version number of the .NET 
MyServices service. 

The /system/systemVersion/version/@minorVersion (string minOccurs=0 
maxOccurs=l) attribute specifies the minor version number of the .NET MyServices service. 
The /system/systemVersion/version/@buildNumber (string minOccurs=0 maxOccurs=l) 
attribute specifies the buildNumber of the .NET MyServices service. The 
/system/systemVersion/version/@qfe (string minOccurs-0 maxOccurs=l) attribute specifies 
the qfe version number of the .NET MyServices service. The 

/system/systemVersion/version/productReieaseName (string minOccurs=l maxOccurs=l) 
element defines the major product release string (as in .NET My Services Beta 1, and so on). 
The /system/system Version/version/productlmplementationName (anyURI minOccurs=l 
maxOccurs=l) element defines the class of the service to differentiate between different 
implementations. 

The /system/system Version/buildDate (dateTime minOccurs=l maxOccurs=l) element 
defines the date and time that the .NET My Services system was built. The time is in UTC (Z 
relative) form. The /system Version/buildDetails (minOccurs=l maxOccurs=l) element defines 



-65- 



details of the build including the machine that generated the build, the branch id of the software 
that contributed to the build, the type of build (chk/fre), and if the build was generated by an 
official build release process. 

The /system/system Version/buildDetails/@machine (string minOccurs=0 
5 maxOccurs=l) attribute specifies the machine that generated the build. The 

system/system VersionftuildDetails/@branch (string minOccurs=0 maxOccurs=l) attribute 
specifies the software branch id for the source code that contributed to this build. The 
/system/system Version/buildDetails/@type (string minOccurs=0 maxOccurs^l) attribute 
specifies the type of build. A value of chk indicates that this is a checked or debug build. A 
Ifi 10 value offre indicates that this is a retail build. The 

|:SE5 

f 0 /system/systemVersion/buildDetails/@official (string minOccurs=0 maxOccurs= 1 ) attribute 

I* indicates that the build was produced by an official build process (value of yes), or an unofficial 

process (value of no). 

J|t The /system/roleMap (minOccurs=l maxOccurs=l) element encapsulates all the 

|£ 15 elements that make up a roleMap, which include document class relative roleTempIate, 
priority, name, method, and per-method scope. An individual roleTempIate defines the 
maximum scope of information, and the allowable methods used to access that information for 
each request mapped into the template. The /system/roleMap/@changeNumber (minOccurs=0 
maxOccurs=l) changeNumber attribute is designed to facilitate caching of the element and its 
20 descendants. This attribute is assigned to this element by the .NET My Services system. The 
attribute is read-only to applications. Attempts to write this attribute are silently ignored. The 
/system/roleMap/@id (minOccurs=0 maxOccurs=l) attribute is a globally unique ID assigned 
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to this element by .NET My Services. Normally, .NET My Services will generate and assign 
this ID during an insertRequest operation, or possibly during a replaceRequest. Application 
software can override this ID generation by specifying the useClientlds attribute in the request 
message. Once an ID is assigned, the attribute is read-only and attempts to write it are silently 
ignored. 

The /system/roleMap/@creator (string minOccurs=0 maxOccurs=l) attribute identifies 
the creator in terms of userld, appld, and platformld of the node. The /system/roleMap/scope 
(minOccurs=0 maxOccurs^unbounded) element defines a scope which may be referred to by 
roles within this roleMap to indicate what portions of the document are visible to this role for 
the specified method. 

The /system/roleMap/scope/@id (minOccurs=0 maxOccurs=l) attribute is a globally 
unique ID assigned to this element by .NET My Services. Normally, .NET My Services will 
generate and assign this ID during an insertRequest operation, or possibly during a 
replaceRequest. Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. The /system/roleMap/scope/name (string 
minOccurs=0 maxOccurs=unbounded) node includes the 

/system/roleMap/scope/name/@xml:lang (minOccurs=l maxOccurs=l) required attribute, 
which is used to specify an ISO 639 language code or an ISO 3 166 country code as described 
in RFC 1766. The value of this attribute indicates the language type of the content within this 
element. The /system/roleMap/scope/name/@dir (string minOccurs=0 maxOccurs^l) optional 
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attribute specifies the default layout direction for the localized string. Valid values are rtl (right 
to left), and ltr (left to right). 

The /system/roleMap/scope/shape (minOccurs=l maxOccurs=l) comprises a shape that 
defines the node set that is visible through the document when operating through this shape 
element. The /system/roleMap/scope/shape/@base (string minOccurs^O maxOccurs=l) 
attribute specifies the initial set of nodes visible through the shape. A value of t indicates that 
the shape is initialized to include all possible nodes relative to the shape that is currently in 
effect. For instance, each role defines a scope containing a shape. When defining a shape for a 
role, the value t indicates all possible nodes available in the specified document for this role. 
When defining a shape in an ACL entry, a value of t means all of the nodes visible in the shape 
for the computed role. When using a shape in a data language (e.g., query, insert, replace and 
so on) operation, a value of t indicates all of the possible nodes selected by the data language 
operation (relative to the ACL shape which itself is relative to the role's shape). The value nil 
indicates the opposite of t, which is the empty node set. Nodes from this set may then be 
included into the shape. 

The /system/roleMap/scope/shape/include (minOccurs=0 maxOccurs=unbounded) 
element specifies the set of nodes that should be included into the shape relative to the possible 
set of nodes indicated by the base attribute. The /system/roleMap/scope/shape/include/@select 
(string minOccurs=0 maxOccurs=l) item specifies an XPATH expression that selects a set of 
nodes relative to the externally established context. The expression can never travel outside 
the node-set established by this externally established current context. The expression may 
match zero or more nodes, and the operation manipulates all selected nodes. The minOccurs 
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and maxOccurs attributes are optional and place restrictions and limitations on the number of 
nodes selected. 

The /system/roleMap/scope/shape/exclude (minOccurs=Q maxOccurs=unbounded) 
element specifies the set of nodes that should be excluded from the shape relative to the 
possible set of nodes indicated by the base attribute. The 

/system/roleMap/scope/shape/exclude/@select (string minOccurs=0 maxOccurs=l) item 
specifies an XPATH expression that selects a set of nodes relative to the externally established 
context. The expression can never travel outside the node-set established by this externally 
established current context. The expression may match zero (0) or more nodes, and the 
operation manipulates all selected nodes. The minOccurs and maxOccurs attributes are 
optional and place restrictions and limitations on the number of nodes selected. The 
/system/roleMap/roleTemplate (minOccurs=0 maxOccurs=unbounded) element encapsulates 
the definition of a role. The attribute set for this element includes the document class that this 
roleTemplate refers to, the name of the roleTemplate, and the priority of the roleTemplate. 

The /system/roleMap/roleTemplate/@name (string minOccurs=0 maxOccurs=l) 
element specifies the name of the role. The /system/roleMap/roleTemplate/@priority (int 
minOccurs=0 maxOccurs^l) element specifies the priority of the roleTemplate which is used 
to select that actual roleTemplate when the role evaluation determines that the subject maps to 
multiple roleTemplates. 

The /system/roleMap/roleTemplate/fullDescription (string minOccurs=0 
maxOccurs=l) element contains a description of this role template which specifies the 
capabilities a caller will have when accessing information through this role. The 
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/system/roleMap/roIeTemplate/fiiilDescription/@xml:lang (minOccurs=l maxOccurs=l) 
required attribute is used to specify an ISO 639 language code or an ISO 3 166 country code as 
described in RFC 1766. The value of this attribute indicates the language type of the content 
within this element. The /system/roleMap/roleTemplate/fullDescription/@dir (string 

5 minOccurs^O maxOccurs=l) optional attribute specifies the default layout direction for the 
localized string. Valid values are rtl (right to left), and Itr (left to right). 

The /system/roleMap/roleTemplate/method (minOccurs^O maxOccurs=unbounded) 
element specifies the methods available within this roleTemplate by name, and by scope. When 
a subject maps to a roleTemplate, the method in the request must match one of these elements 

10 for the message to continue to flow. If the method exists, the data available to the method is a 
function of the scope referenced by this method combined with an optional scope referenced 
by the role defined in the roleList 

The /system/roleMap/roleTemplate/method/@name (string minOccurs=0 
maxOccurs=l) element specifies the name of the method. The 

15 /system/roleMap/roleTemplate/method/@scopeRef (string minOccurs=0 maxOccurs=l) 
attribute specifies the scope within this document that is in effect for this method. The 
/system/methodMap (minOccurs=l maxOccurs=l) element defines the methodMap. While in 
most cases, the roleMap section contains a definitive list of methods, these methods are likely 
to be scattered about the roleMap in various templates. This section contains the definitive 

20 non-duplicated list of methods available within the service. 

The /system/methodMap/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
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This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. 

The /system/methodMap/@id (minOccurs=0 maxOccurs=l) attribute is a globally 
unique ID assigned to this element by .NET My Services. Normally, .NET My Services will 
generate and assign this ID during an insertRequest operation, or possibly during a 
replaceRequest. Application software can override this ID generation by specifying the 
useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. The /system/methodMap/@creator (string 
minOccurs=0 maxOccurs=l) attribute identifies the creator in terms of userld, appld, and 
platformld of the node. 

The /system/methodMap/method (minOccurs=0 maxOccurs=unbounded) element 
defines a method that is available within this service. The /system/methodMap/method/@name 
(string minOccurs^O maxOccurs=l) attribute specifies the name of a method available within 
the service. The/system/methodMap/method/{any} (minOccurs=0 maxOccurs=unbounded) 
provides for extensibility. The /system/schemaMap (minOccurs=l maxOccurs=l) element 
defines the various schema's that define the data structures and shape of information managed 
by this service. Each schema is defined by its namespace URI, its location, and a preferred 
namespace alias. 

The /system/schemaMap/@changeNumber (minOccurs=0 maxOccurs=l) 
changeNumber attribute is designed to facilitate caching of the element and its descendants. 
This attribute is assigned to this element by the .NET My Services system. The attribute is 
read-only to applications. Attempts to write this attribute are silently ignored. 
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The /system/schemaMap/@id (minOccurs=0 maxOccurs=l) attribute is a globally 
unique ID assigned to this element by .NET My Services. Normally, .NET My Services will 
generate and assign this ID during an insertRequest operation, or possibly during a 
replaceRequest. Application software can override this ID generation by specifying the 
5 useClientlds attribute in the request message. Once an ID is assigned, the attribute is read-only 
and attempts to write it are silently ignored. 

The /system/schemaMap/@creator (string minOccurs=0 maxOccurs=l) attribute 
identifies the creator in terms of userld, appld, and platformld of the node. The 
/system/schemaMap/schema (minOccurs=0 maxOccurs=unbounded) element defines a schema 
5{1 10 which defines data-structures and the shape of information managed by this service. Multiple 



schema elements exist for each service, once for each logical grouping of information exposed 



by the service. The /system/schemaMap/schema/@namespace (anyURI minOccurs=0 
maxOccurs=l) attribute specifies the namespace URI of this schema. The 
/system/schemaMap/schema/@schemaLocation (anyURI minOccurs=0 maxOccurs=l) 
15 attribute specifies the location (in the form of a URI) of the resource containing schema. 

When a schema is reachable through a variety of URIs, one schema element will exist for each 
location. 

The /system/schemaMap/schema/@alias (string minOccurs=0 maxOccurs=l) attribute 
specifies the preferred alias that should be used if possible when manipulating information 
20 covered by this schema in the context of this service. The /system/schemaMap/schema/ {any} 
(minOccurs=0 maxOccurs=unbounded) provides for extensibility. The /system/wsdlMap 
(minOccurs=l maxOccurs=l) element defines the wsdlMap for this service. This map includes 
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the location of WSDL documents, DISCO documents, and WSIL documents for this web 
service. These documents are used by applications to understand the format of messages that 
may be sent to the various services. The /system/wsdlMap/@changeNumber (minOccurs^O 
maxOccurs=l) changeNumber attribute is designed to facilitate caching of the element and its 
descendants. This attribute is assigned to this element by the .NET My Services system. The 
attribute is read-only to applications. Attempts to write this attribute are silently ignored. 

The /system/wsdlMap/@id (minOccurs=0 maxOccurs=l) attribute is a globally unique 
ID assigned to this element by .NET My Services. Normally, .NET My Services will generate 
and assign this ID during an insertRequest operation, or possibly during a replaceRequest. 
Application software can override this ID generation by specifying the useClientlds attribute in 
the request message. Once an ID is assigned, the attribute is read-only and attempts to write it 
are silently ignored. The /system/wsdlMap/@creator (string minOccurs=0 maxOccurs=l) 
attribute identifies the creator in terms of userld, appld, and platformld of the node. 

The /system/wsdlMap/wsdl (minOccurs=0 maxOccurs=unbounded) element is used to 
specify the location of a WSDL file for this service. Multiple entries may exist pointing to the 
same file hosted in multiple locations, or to variations on the content within the WSDL files. 

The /system/wsdIMap/wsdl/@wsdlLocation (anyURI minOccurs=0 maxOccurs=l) 
attribute is a URI that specifies the location of the WSDL file. The 
/system/wsdlMap/wsdl/{any) (minOccurs=0 maxOccurs^unbounded) provides for 
extensibility. 

The /system/wsdlMap/disco (minOccurs=0 maxOccurs=unbounded) element is used to 
specify the location of a DISCO (web-services discovery) file for this service. Multiple entries 
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may exist pointing to the same file hosted in multiple locations, or to variations on the content 
within the DISCO files. The /system/wsdlMap/disco/@discoLocation (anyURI minOccurs=0 
maxOccurs=l) attribute is a URI that specifies the location of the DISCO file. The 
/system/wsdlMap/disco/{any} (minOccurs=0 maxOccurs=unbounded) provides extensibility. 
5 The /system/wsdlMap/wsil (minOccurs=0 maxOccurs=unbounded) element is used to specify 
the location of a WSIL file for this service. Multiple entries may exist pointing to the same file 
hosted in multiple locations, or to variations on the content within the WSIL files. The 
/system/wsdlMap/wsil/@wsilLocation (anyURI minOccurs=0 maxOccurs=l) attribute is a URI 
that specifies the location of the WSIL file. The /system/wsdlMap/wsiI/{any} (minOccurs=0 



ntyProfile /Domain Specific Methods 

The myProfile service supports the standard methods query, insert, replace, delete and 



As can be seen from the foregoing detailed description, there is provided a schema- 
based profile service that allows users to access their data based on their identities and 
corresponding roles with respect to the data. The schema-based profile service provides 
Profile data access independent of the application program and device, and in a centrally- 
20 accessible location such as the Internet. The schema-based profile service is extensible to 
handle extended contact information. 



%A 



10 maxOccurs=unbounded) provides extensibility. 




15 



update. 
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While the invention is susceptible to various modifications and alternative 
constructions, certain illustrated embodiments thereof are shown in the drawings and have 
been described above in detail It should be understood, however, that there is no intention to 
limit the invention to the specific forms disclosed, but on the contrary, the intention is to cover 
all modifications, alternative constructions, and equivalents falling within the spirit and scope 
of the invention. 
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